Nmap Development mailing list archives
Re: SSH module broken @ Ncrack?
From: Richard Miles <richard.k.miles () googlemail com>
Date: Fri, 20 Aug 2010 17:12:38 -0500
Opz, I forgot to reply to maillist and instead sent private to ithilgore. Yes, the output is like that: ssh://10.10.1.3:22 Initiating new Connection ssh://10.10.1.3:22 pushed to list FULL Stats: 0:00:07 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done ssh://10.10.1.3:22 Pool: Append root root ssh://10.10.1.3:22 nsock READ timeout! ssh://10.10.1.3:22 popped from list FULL ssh://10.10.1.3:22 Attempts: total 0 completed 0 supported 0 --- rate 0.00 ssh://10.10.1.3:22 Pool: extract root root ssh://10.10.1.3:22 Initiating new Connection ssh://10.10.1.3:22 Password list finished! ssh://10.10.1.3:22 pushed to list PAIRFINI Stats: 0:00:34 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done ssh://10.10.1.3:22 Pool: Append root root ssh://10.10.1.3:22 popped from list PAIRFINI ssh://10.10.1.3:22 nsock READ timeout! ssh://10.10.1.3:22 Attempts: total 0 completed 0 supported 0 --- rate 0.00 ssh://10.10.1.3:22 Pool: extract root root ssh://10.10.1.3:22 Initiating new Connection ssh://10.10.1.3:22 pushed to list PAIRFINI However, if I open a parallel shell and I call ssh root@10.10.1.3 it shows the SSH banner and in sequence ask for my password. Any idea why? Thanks On Fri, Aug 20, 2010 at 2:44 AM, ithilgore <ithilgore.ryu.l () gmail com> wrote:
On 08/20/10 03:42, Richard Miles wrote:Hi, I downloaded Nrack SNV release and Alpha-02 and both do not work against my SSH servers. I tested against two SSH servers, a openSSH and a CuteFTP sshd, both with SSHv2. I can connect to both servers without problems without client, but when I use ncrack, is just runs forever and never give at least a try, the output is like that: Rate: 0.00; Found: 0; About 0.00% done Stats: 0:12:40 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done Stats: 0:12:40 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done Stats: 0:12:41 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done Stats: 0:12:53 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done Stats: 0:12:54 elapsed; 0 services completed (1 total) Rate: 0.00; Found: 0; About 0.00% done I'm using like that: ncrack -v -U common.usr -P default.pwd MyIP:22 Also, if I replace -U with "--user root" and -P with "--pass root" the same happens. Very wired. Is it a well known problem? There is a fix? ThanksI just tested the module against a latest OpenSSH server and it worked fine. Could you also please provide some capture data (if any)? Thanks, ithilgore -- http://sock-raw.org http://twitter.com/ithilgore
_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- SSH module broken @ Ncrack? Richard Miles (Aug 19)
- Re: SSH module broken @ Ncrack? ithilgore (Aug 19)
- Re: SSH module broken @ Ncrack? ithilgore (Aug 19)
- Re: SSH module broken @ Ncrack? Richard Miles (Aug 20)
- Re: SSH module broken @ Ncrack? ithilgore (Aug 20)
- Re: SSH module broken @ Ncrack? Richard Miles (Aug 26)
- Re: SSH module broken @ Ncrack? Richard Miles (Aug 20)