Re: GSoC : CPE , SCTP ,Update feed

[Daniel Roethlisberger <daniel () roe ch>]

Sorry for replying on a month-old thread, but I think it's worth
a comment:

ambarisha b <b.ambarisha () gmail com> 2011-04-03:
> On Fri, Apr 1, 2011 at 11:16 AM, David Fifield <david () bamsoftware com> wrote:
> > > One more idea I had in mind was adding SCTP support for NSE.But there
> > > was mention of some problems being reported about the SCTP
> > > functionality.First that has to be investigated.
> >
> > I don't remember hearing of problems with SCTP in NSE? Can you remind me
> > what they were?
>
> May be I was a bit unclear,I meant the normal -sY/-sZ scans.Have a
> look at this discussion tagged in the
> todo:http://seclists.org/nmap-dev/2009/q2/672.It might just be a
> misconfiguration in the network.Still its worth a look.Presently, I
> get all the ports filtered.Perhaps, scanme.csnc.ch is now firewalled ?

The SCTP scanme box can still be reached at scanme.roe.ch.  UDP
and TCP are filtered, ICMP and SCTP are unfiltered.  IPv4 & IPv6.

My previous employer (who sponsored parts of the SCTP related
development) unfortunately removed the CNAME record for
scanme.csnc.ch from their nameserver after I moved on to a new
employer last year.

As for the problems some experienced with -sY/-sZ:  Revisiting
the SCTP scanning code is actually still on my to-do list.  Since
I was unable reproduce the behaviour experienced by Brandon and
Fyodor at the time, I am not sure whether the Nmap SCTP code is
to blame or not.  Maybe this summer I will get around to revisit
that, but please do feel free to jump in if you like.

-- 
Daniel Roethlisberger
http://daniel.roe.ch/
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/