Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: sslports in version probes
From: David Fifield <david () bamsoftware com>
Date: Wed, 27 Jun 2012 20:20:28 -0700

On Wed, Jun 27, 2012 at 10:45:44PM -0400, Ryan Giobbi wrote:
When there is a port in the sslports section in the version probes,
does that mean that nmap will try SSL on that port but not send probes
if the encryption doesn't work?

I'm trying to match a service that has an encrypted and unencrypted
version on the same port but the encryption can be controlled by the
user. I'm not sure if the port should be listed in the ports and
sslports, or just the sslports section

sslports are the ports that will be tested by default if the
SSLSessionReq probe determines that the port is SSL. At that point
detection starts over from the beginning, but this time everything
happens over SSL tunnels.

It sounds like you want to add the port number to both ports and
sslports.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault