Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Nmap Hackers: making NMAP's job harder on FreeBSD

making NMAP's job harder on FreeBSD

From: David O'Brien <obrien_at_FreeBSD.ORG>
Date: Wed, 18 Aug 1999 10:50:10 -0700

This just went into FreeBSD 4.0-CURRENT (the development branch).
I expect it will also appear in 3.3-RELEASE (mid-sept).

----- Forwarded message
Date: Wed, 18 Aug 1999 08:40:06 -0700 (PDT)
Subject: cvs commit: src/sys/netinet tcp_input.c

  Modified files:
    sys/netinet tcp_input.c
  Log:
  Slight tweak to tcp.blackhole to add optional behaviour to
  drop any segment arriving at a closed port.
  tcp.blackhole=1 - only drop SYN without RST
  tcp.blackhole=2 - drop everything without RST
  tcp.blackhole=0 - always send RST - default behaviour
  
  This confuses nmap -sF or -sX or -sN quite badly.
  
  Revision Changes Path
  1.89 +26 -9 src/sys/netinet/tcp_input.c
----- End forwarded message -----
Received on Aug 18 1999

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]