Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PATCHed] Fix IPProto Scan (-sO) for UDP

From: Kris Katterjohn <katterjohn () gmail com>
Date: Sat, 27 Jan 2007 14:36:34 -0600
Jan Engelhardt wrote:

The attached patch (/nmap SVN r4404) fixes the IPProto Scan when a ICMP
Port Unreachable is received for UDP (and possibly others). We weren't
checking for the ICMP message before, so it was coming up open|filtered
or filtered. The SVN log:

------------------------------------------------------------------------
r4404 | kris | 2007-01-27 14:09:14 -0600 (Sat, 27 Jan 2007) | 1 line

Fix the IPProto scan for UDP. Now we check for ICMP Port Unreachable and
call it open if we get one. This was coming up open|filtered, and
sometimes filtered before.
------------------------------------------------------------------------


Hm, why should the port be open if we get Port Unreachable?


      -`J'


If we're doing a UDP Scan and get it, we call it closed. The IPProto
Scan only checks if the protocol is available, and if we get a Port
Unreachable we call the protocol "open", or available. Because we'll get
it if UDP is supported, but the port is closed.

Sorry I was confusing :)

-Kris

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: