Re: Nmap 5 and Zenmap, woes on OS X.iv.xi; warnings and nulls

["Autymn D. C." <lysdexia () sbcglobal net>]

From: David Fifield <david_at_bamsoftware.com> 
Date: Thu, 13 Aug 2009 20:11:17 -0600
> > There is no /dev/ on my disk, thus no /dev/bpf/.
> There probably is a /dev, but it's hidden by the Finder. In a terminal you should be able to run "ls /dev". This 
> problem is caused by non-root users not having permission to the bpf device. A workaround is to run with sudo. A 
> permanent solution is to install the ChmodBPF script that comes with Wireshark.<

Ugh, there's no way to reply on seclists.org, and the quote is broken.

! The last time I did "ls /" I didn't spot a /dev/.  But there it is.  How can I make folders un-invisible in Finder?  
I ran the ch-commands at the prompt; will they stick after a restart or do I need a runtime script?  If the latter, how 
do I install ChmodBPF?

Terminal log>
2009.08.21.02:35:59×1249.~×test·0·chgrp admin /dev/bpf*
chgrp: /dev/bpf0: Operation not permitted
chgrp: /dev/bpf1: Operation not permitted
chgrp: /dev/bpf2: Operation not permitted
chgrp: /dev/bpf3: Operation not permitted
2009.08.21.02:43:57×1249.~×test·0·sudo chgrp admin /dev/bpf*
sudo: /var/db/sudo owned by uid 501, should be uid 0

WARNING: Improper use of the sudo command could lead to data loss
or the deletion of important system files. Please double-check your
typing when using sudo. Type "man sudo" for more information.

To proceed, enter your password, or type Ctrl-C to abort.

Password:sendmail: warning: valid_hostname: numeric hostname: 1249
postdrop: warning: valid_hostname: numeric hostname: 1249

Sorry, try again.
Password:
2009.08.21.02:44:09×1249.~×test·0·ls -l /dev/bpf*
crw-------   1 root  admin   23,   0 Aug 21 02:26 /dev/bpf0
crw-------   1 root  admin   23,   1 Aug  9 15:40 /dev/bpf1
crw-------   1 root  admin   23,   2 Apr 26 03:37 /dev/bpf2
crw-------   1 root  admin   23,   3 Apr 26 03:37 /dev/bpf3
2009.08.21.02:44:28×1249.~×test·0·sudo chmod g+rw /dev/bpf*
sudo: /var/db/sudo owned by uid 501, should be uid 0

WARNING: Improper use of the sudo command could lead to data loss
or the deletion of important system files. Please double-check your
typing when using sudo. Type "man sudo" for more information.

To proceed, enter your password, or type Ctrl-C to abort.

Password:sendmail: warning: valid_hostname: numeric hostname: 1249
postdrop: warning: valid_hostname: numeric hostname: 1249

2009.08.21.02:44:46×1249.~×test·0·ls -l /dev/bpf*
crw-rw----   1 root  admin   23,   0 Aug 21 02:26 /dev/bpf0
crw-rw----   1 root  admin   23,   1 Aug  9 15:40 /dev/bpf1
crw-rw----   1 root  admin   23,   2 Apr 26 03:37 /dev/bpf2
crw-rw----   1 root  admin   23,   3 Apr 26 03:37 /dev/bpf3
2009.08.21.02:44:49×1249.~×test·0·man ls
2009.08.21.02:48:37×1249.~×test·0·nmap --iflis

Starting Nmap 5.00 ( http://nmap.org ) at 2009-08-21 02:48 PDT
************************INTERFACES************************
DEV (SHORT) IP/MASK         TYPE     UP MAC
lo0 (lo0)   127.0.0.1/8     loopback up
en1 (en1)   192.168.1.65/24 ethernet up 00:0D:93:7E:D2:57

**************************ROUTES**************************
DST/MASK           DEV GATEWAY
239.255.255.253/32 en1 192.168.1.254
64.13.134.49/32    en1 192.168.1.254
69.4.231.53/32     en1 192.168.1.254
74.125.19.147/32   en1 192.168.1.254
74.125.19.154/32   en1 192.168.1.254
216.246.59.228/32  en1 192.168.1.254
224.0.0.251/32     en1 192.168.1.254
127.0.0.1/32       lo0 127.0.0.1
192.168.1.65/32    lo0 127.0.0.1
207.210.108.227/32 en1 192.168.1.254
127.0.0.0/8        lo0 127.0.0.1
0.0.0.0/0          en1 192.168.1.254
<Terminal log

> > GTK+ 2.14b is installed fine, I think, but I couldn't install PyGTK
> > 2.14 or its dependends—for a while:
> You are brave to try compiling all of Zenmap's dependencies from source--that's not the recommended procedure because 
> there are so many. Do you know about the installer for Mac OS X?

http://nmap.org/download.html#macosx<

I never saw your download page!  My "kit" was from BrotherSoft.  Your installer works, and Zenmap is finally installed 
and works!  Where are scripts/, docs/, nselib/, nmap-services, nmap-protocols, and so on?  How does the installer do 
any differently than the former's instructions?  I see now there are no longer pygtk or gobject Python modules, and it 
runs on X11.

> If you're going to install Zenmap from source, don't compile all the dependencies manually. Use a packaging system 
> like MacPorts. That will solve all your problems with finding new enough versions of libraries. With MacPorts, you 
> have to install the packages py25-gtk, py25-sqlite3, and py25-zlib, and then configure Nmap setting the PYTHON 
> environment variable to the path of the Python interpreter installed by MacPorts.<

I had MacPorts one evening, but no longer cared for the new /opt paths, so I wiped everything there; also I didn't 
understand how to port...  Did I still need gobject and gettext?

-Aut

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org