Bug: specified source port not honored in ncat

[Gabriel Friedmann <gabriel () gsource org>]

Bug: Specifying --source-port (or -p) for ncat conections does not appear to
be honored.

Ncat: Version 5.30BETA1

My host: Linux, CentOS 5.5

Please note that the source (ghost) source port is selected to be 40967
instead of the specified port 80.

---------Command---------
[gabriel@ghost ~]$ *sudo ncat -vvv --source-port 80 74.125.79.99 80*
Ncat: Version 5.30BETA1 ( http://nmap.org/ncat )
NSOCK (0.0030s) TCP connection requested to 74.125.79.99:80 (IOD #1) EID 8
NSOCK (0.0030s) Bind to 0.0.0.0 failed (IOD #1) EID 8
NSOCK (0.0230s) Callback: CONNECT SUCCESS for EID 8 [74.125.79.99:80]
Ncat: Connected to 74.125.79.99:80.
NSOCK (0.0230s) Read request from IOD #1 [74.125.79.99:80] (timeout: -1ms)
EID 18
NSOCK (0.0230s) Read request for 0 bytes from IOD #2 (peer unspecified) EID
26


------TCP Dump--------
[gabriel@ghost ~]$ *sudo  tcpdump  host 74.125.79.99*
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth0, link-type EN10MB (Ethernet), capture size 96 bytes
20:08:42.302886 IP *ghost.40967* > ey-in-f99.1e100.net.http: S
2500426885:2500426885(0) win 5840 <mss 1460,sackOK,timestamp 563478142
0,nop,wscale 7>
20:08:42.322709 IP ey-in-f99.1e100.net.http > ghost.40967: S
512690965:512690965(0) ack 2500426886 win 5672 <mss 1430,sackOK,timestamp
1708793486 563478142,nop,wscale 6>
20:08:42.322736 IP ghost.40967 > ey-in-f99.1e100.net.http: . ack 1 win 46
<nop,nop,timestamp 563478148 1708793486>



Hint: Maybe related, nmap version scanning also appears to not honor the
source port.
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/