Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: nmap 4.11 problem?
From: "Lee Lawson" <leejlawson () gmail com>
Date: Thu, 10 Aug 2006 16:15:50 +0100

What are the results if you perform these scan types?

TCP Connect scan on default port range:
nmap -sT 172.16.0.0/16

TCP Syn scan (Half open) on default port range:
nmap -sS 172.16.0.0/16

UDP scan on default port range:
nmap -sU 172.16.0.0/16

ICMP Ping sweep:
nmap -sP 172.16.0.0/16

I'm interested to know if ALL of the 1600 and something ports are
shown as being open, and what the ping sweep comes back with.

What are the operating system types you are scanning?  Any firewalls in place?



On 10 Aug 2006 08:49:29 -0000, esecuritydude () googlemail com
<esecuritydude () googlemail com> wrote:
Hi list,


I have been using nmap a while now until I recently made a few changes to things.


I am using Debian 3.1Sarge and have just upgraded my inetd to xinetd.

Secondly, I am using a Linksys WRT54GS hardware revision 5 with latest Firmware.


The problem I am encountering is when I run a scan on a range for example:


nmap -p21-23 172.16.0.0/16


I have tryed with -sV switch also.


The output shows that all ports 21,22, and 23 are open on all live hosts. This is not the case, as I have checked the 
ports are closed on these hosts.


Does anyone have any suggestions as to any additional switches I could try and use, or is anyone else experiencing 
problems like this?


Any suggestions most welcome.


Regards,

Miguel


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's
Choice Award from eWeek. As attacks through web applications continue to rise,
you need to proactively protect your applications from hackers. Cenzic has the
most comprehensive solutions to meet your application security penetration
testing and vulnerability management needs. You have an option to go with a
managed service (Cenzic ClickToSecure) or an enterprise software
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can
help you: http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------




--
Lee J Lawson
leejlawson () gmail com
leejlawson () hushmail com

"Give a man a fire, and he'll be warm for a day; set a man on fire,
and he'll be warm for the rest of his life."

"Quidquid latine dictum sit, altum sonatur."

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request () cenzic com for details.
------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault