RE: Bootable Nmap virtual network CD

["Ross Patel" <ross.patel () afentis com>]

Hello,

Whilst we do need to get our high level objectives agreed long before we
start addressing the more low-level detail, the recent exchanges
regarding Virtual Network services has been very interesting.

There is a great concern about the rate at which these packages and this
solution will become obsolete if we opt for CD's.  One alternative would
be to turn this entirely on its head and arrange for a suitable test
network (perhaps a HoneyNet) to be created, hosted online and accessible
only by readers of the book.

In this manner, readers can use some of the demonstrations outlined in
the book to probe and evaluate in what can be considered a completely
safe and legal environment.

Perhaps this restricted environment will also host the latest source for
nmap (even before it is made publicly available?), articles/guides and
links to further resources etc.  This restricted environment then
becomes very much a value-add and a USP for the book.


Kind regards, 
Ross 

Security & Assurance Services 
Afentis Security 
www.afentis.com 

Tel:    +44 (01246) 233893 
Mob:    +44 (07782) 132781 
E-mail: ross.patel () afentis com 
PGP:    www.afentis.com/pgp/Ross_Patel_PGP.asc 


This communication constitutes an electronic communication within the
meaning of the Electronic Communications Privacy Act, 18 USC 2510, and
its disclosure is strictly limited to the recipient intended by the
sender of this message.  This communication may contain confidential and
privileged material for the sole use of the intended recipient and
receipt by anyone other than the intended recipient does not constitute
a loss of the confidential or privileged nature of the communication.
Any review or distribution by others is strictly prohibited.  If you are
not the intended recipient, please contact the sender by return
electronic mail and delete copies of this communication.


-----Original Message-----
From: David Pybus [mailto:david_pybus () yahoo co uk] 
Sent: 12 November 2003 22:37
To: nmap-writers () insecure org
Subject: Re: Bootable Nmap virtual network CD

knoppix-std hacked into something fancy would certainly be a neat
plaything but
I agree with Fyodor that it should not be a priority. To add a little
addional
interest it could be possible to chuck in a few other free operating
systems,
i.e. enough to have an IP stacks and a couple of open ports but no more,
running under emulation. Naturally certain well known proprietary apps
would be
out the window but there would be no reason why the Bochs emulator
couldn't
included on the CD it is at http://bochs.sourceforge.net/. From memory
knoppix-std has a FAQ somewhere on how to modify the contents of the ISO
and
then create a new ISO. 

David

 --- Fyodor <fyodor () insecure org> wrote: > On Wed, Nov 12, 2003 at
04:20:33PM
-0600, Stu Green wrote:
> > Fyodor,
> > Such an iso exists:
> > http://knoppix-std.org
>
> That might be a good place to start.  But it will surely need some
> customization.  For example:
>
> o http://knoppix-std.org/tools.html mentions "Nmap 3.10".  If that is
>   what they are really using in the latest version, it needs to be
>   updated to 3.48.  You might be able to convince them to do this so
>   that all knoppix-std users will benefit.
>
> o Their version of honeyd might have to be updated as well
>
> o Presumably they don't have the virtual network we have been
>   discussing.  That will take quite a bit of configuration and setup
>   work.
>
> o They say "many network services can be started with but a click on
>   the menu and many of those services have known vulnerabilities." at
>   http://www.knoppix-std.org/faq.html .  If we are going to start any
of
>   these services, we should probably upgrade them to a secure version
>   first.
>
> Do people generally agree with the idea of basing this on knoppix-std,
> or do you have better suggestions?
>
> Cheers,
> -F
>
> ---------------------------------------------------------------------
> For help using this (nmap-writers) mailing list, send a blank email to

> nmap-writers-help () insecure org .
>
>  

________________________________________________________________________
Want to chat instantly with your online friends?  Get the FREE Yahoo!
Messenger http://mail.messenger.yahoo.co.uk

---------------------------------------------------------------------
For help using this (nmap-writers) mailing list, send a blank email to 
nmap-writers-help () insecure org .





---------------------------------------------------------------------
For help using this (nmap-writers) mailing list, send a blank email to 
nmap-writers-help () insecure org .