Re: OS X 10.6 Problems with privileged scans

[Tom Sellers <nmap () fadedcode net>]

David Fifield wrote:
> cd nmap
> sudo ./nmap -sP -d9 scanme.nmap.org
>
> Find out the PID of the nmap process, then run
>
> sudo gdb ./nmap $pid
>
> Type "backtrace" to see where in the code it's hanging.
>
> David Fifield

Ok, here we go...


Reading symbols for shared libraries .+++++.. done
0x00007fff813e0364 in read ()
(gdb) backtrace
#0  0x00007fff813e0364 in read ()
#1  0x00000001003465fc in pcap_read_bpf ()
#2  0x000000010034824b in pcap_next ()
#3  0x00000001000321ac in readip_pcap (pd=0x100401c40, len=0x7fff5fbfad84, to_usec=999054, rcvdtime=0x7fff5fbface0, 
linknfo=0x7fff5fbfad90, validate=true) at tcpip.cc:2330
#4  0x0000000100087166 in get_ping_pcap_result (USI=0x100401710, stime=0x7fff5fbfae10) at scan_engine.cc:4413
#5  0x000000010008c3e7 in waitForResponses (USI=0x100401710) at scan_engine.cc:4990
#6  0x00000001000913cb in ultra_scan (Targets=@0x7fff5fbfaf80, ports=0x7fff5fbfc6e0, scantype=PING_SCAN, 
to=0x1001e8964) at scan_engine.cc:5279
#7  0x0000000100020152 in massping (hostbatch=0x100820200, num_hosts=1, ports=0x7fff5fbfc6e0) at targets.cc:424
#8  0x0000000100022e0c in nexthost (hs=0x10081fc00, exclude_group=0x0, ports=0x7fff5fbfc6e0, pingtype=122) at 
targets.cc:578
#9  0x000000010001ab9e in nmap_main (argc=4, argv=0x7fff5fbffc30) at nmap.cc:1716
#10 0x000000010000b5c5 in main (argc=4, argv=0x7fff5fbffc30) at main.cc:205
(gdb)


Based on my reading of this the code has hung trying to read from the interface.
Is that correct?  I am surprised that the code would block and not time out.

Should I do anything to increase the visibility into libpcap?

Tom



_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org