Nmap Hackers: Re: nmap..... via web

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Hackers mailing list archives

Re: nmap..... via web

From: Andrew Brown <atatat () atatdot net>
Date: Thu, 18 Feb 1999 23:08:16 -0500

Make the CGI a perl script that is running SUID perl so it runs as
root.  Make the perl check to see where they are coming from and that
the host they want to scan is inside your network before allowing to
continue with the scan.

That would be a bit risky if the script isn't written properly, but it
should be fairly easy to do.


risky, yes.  especially with the buffer overflow problems perl has had
in the past.  my recommendation would be to make a suid copy of nmap
that *only* the web server id can get to.  and hack it (nmap) so that
only the web server id is allowed to run it.  simple enough to do.

        if (getuid() != webserveruid) exit(1);

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior () daemon org             * "ah!  i see you have the internet
twofsonet () graffiti com (Andrew Brown)                that goes *ping*!"
andrew () crossbar com       * "information is power -- share the wealth."

By Date By Thread

Current thread:

install fails. Jeffrey Roberson (Volt Computer) (Feb 18)
- nmap..... via web Erik Parker (Feb 18)
  - Re: nmap..... via web MadHat (Feb 18)
    - Re: nmap..... via web Andrew Brown (Feb 18)
    - Re: nmap..... via web ajax (Feb 18)
    - Re: nmap..... via web Fyodor (Feb 19)
    - Re: nmap..... via web ajax (Feb 19)
    - Re: nmap..... via web David G. Andersen (Feb 19)
    - Re: nmap..... via web Lamont Granquist (Feb 19)