Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: sslports in version probes

From: David Fifield <david () bamsoftware com>
Date: Wed, 27 Jun 2012 20:20:28 -0700
On Wed, Jun 27, 2012 at 10:45:44PM -0400, Ryan Giobbi wrote:

When there is a port in the sslports section in the version probes,
does that mean that nmap will try SSL on that port but not send probes
if the encryption doesn't work?

I'm trying to match a service that has an encrypted and unencrypted
version on the same port but the encryption can be controlled by the
user. I'm not sure if the port should be listed in the ports and
sslports, or just the sslports section


sslports are the ports that will be tested by default if the
SSLSessionReq probe determines that the port is SSL. At that point
detection starts over from the beginning, but this time everything
happens over SSL tunnels.

It sounds like you want to add the port number to both ports and
sslports.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: