Nmap Development mailing list archives

Re: version check in nfs-ls?

From: Daniel Miller <bonsaiviking () gmail com>
Date: Mon, 25 Apr 2011 08:24:19 -0500

Djalal,

Confirmed, this fixes the issue. Thanks!

Dan

On Sat, Apr 23, 2011 at 7:45 AM, Djalal Harouni <tixxdz () opendz org> wrote:

On 2011-04-08 14:24:50 -0500, Daniel Miller wrote:

Hey list,

Ran across an issue with nfs-ls while scanning my HP printer (I was
surprised to see that it had NFS on it!). Here's what I was seeing:

$ sudo nmap --script rpcinfo -p 111,2049 -sU 192.168.1.X


Starting Nmap 5.51SVN ( http://nmap.org ) at 2011-04-08 14:12 CDT
Nmap scan report for 192.168.1.X
Host is up (0.00092s latency).
PORT     STATE  SERVICE
111/udp  open   rpcbind
| rpcinfo:
|   program version   port/proto  service
|   100000  2,2,3,3    34861/udp  rpcbind
|   100000  2,3        34861/112  rpcbind
|   100003  2           2049/112  nfs
|   100003  2           2049/udp  nfs
|   100005 1 34862/112  mountd
|_  100005  1          34862/udp  mountd
2049/udp open  nfs
MAC Address: 00:17:08:XX:XX:XX (Hewlett Packard)

Nmap done: 1 IP address (1 host up) scanned in 0.15 seconds
$ sudo nmap --script nfs-ls -p 111,2049 -sU 192.168.1.X

Starting Nmap 5.51SVN ( http://nmap.org ) at 2011-04-08 14:07 CDT
Nmap scan report for 192.168.1.X
Host is up (0.0027s latency).
PORT     STATE  SERVICE
111/udp  open   rpcbind
| nfs-ls:
|   Arguments:
|     maxfiles: 10 (file listing output limited)
|
|   NFS Export /hpmnt/dsk_ram0
|_  ERROR: versions mismatch, nfs v2 - mount v1
2049/udp open  nfs
MAC Address: 00:17:08:XX:XX:XX (Hewlett Packard)

Nmap done: 1 IP address (1 host up) scanned in 0.22 seconds


I'm not sure why this version discrepancy matters. I found the check in
nfs-ls.nse:

Dan I've committed a patch as svn r22944, it should fix the problem. Can
you please test it ?

--
tixxdz
http://opendz.org

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

version check in nfs-ls? Daniel Miller (Apr 08)
- Re: version check in nfs-ls? Daniel Miller (Apr 08)
- Re: version check in nfs-ls? Djalal Harouni (Apr 13)
  - Re: version check in nfs-ls? Djalal Harouni (Apr 13)
- Re: version check in nfs-ls? Djalal Harouni (Apr 23)
  - Re: version check in nfs-ls? Daniel Miller (Apr 25)