Re: BUG? Socket troubles: Too many open files.

[Richard Miles <richard.k.miles () googlemail com>]

Hi David,

Sadly I don't have access anymore to this system / network. :(

A workaround that worked was to replace --script "(auth or brute or exploit
or intrusive or vuln) and not (smb-brute or ldap-brute)" with just auth and
exploit or just brute and vuln (now I don't remember which combination
worked - since the other one generated the same bug).

I hope it helps.

Thanks.

On Thu, Nov 22, 2012 at 12:17 AM, David Fifield <david () bamsoftware com>wrote:

> On Fri, Oct 19, 2012 at 09:55:52AM -0500, Richard Miles wrote:
> > Hi
> >
> > An additional info that may help, when I execute with -sS instead of -sT
> I
> > get this:
> >
> > false   MSRPC call returned a fault (packet type)
> > false   MSRPC call returned a fault (packet type)
> > Socket troubles: Too many open files
> > nmap: nsock_core.c:1187: nsp_add_event: Assertion `nse->iod->sd >= 0'
> > failed.
> > Aborted
> >
> > Starting Nmap 6.02 ( http://nmap.org ) at 2012-10-18 13:20 CDT
> > Pre-scan script results:
> > | broadcast-avahi-dos:
> > |   Discovered hosts:
> > |     10.0.0.32
> > |     10.0.0.98
> > |   After NULL UDP avahi packet DoS (CVE-2011-1002).
> > |_  Hosts are all up (not vulnerable).
> > Killed
> >
> > Note that after the errors it's being killed (by kernel?). Is there a
> > workaround for it? Do you guess what script may be causing it? I would
> try
> > disable it to see if the issue is solved as a workaround.
>
> Do you still get the error if you reduce the number of ports scanned, as
> with "--top-ports 10"?
>
> Do you get the error if you disable the rpc-grind script?
>
> David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/