Re: nmap OS detection

[Sebastian Brestin <sebastianbrestin () gmail com>]

I have tried --fuzzy/--osscan-guess.
TCP 22 is always open since they are linux/unix servers, another TCP port
from the -F is surely closed and there are no UDP services listening.
Debug is a good idea, I will look into it.
And there may be switches/firewalls that block. Not sure. Because it works
on ipv4, I am guessing that there may be some ipv6 filtering.
I tried -sS.

It is funny because with the same machines, using ipv4 works just fine. The
services that listen on ipv4 should listen on ipv6 as well. And when the
ubuntu machine is scanned from another source machine it is recognized as
ubuntu. But aix and hpux are still not recognized.

-sgb

On Mon, Sep 15, 2014 at 7:47 PM, Jacek Wielemborek <d33tah () gmail com> wrote:

> 15.09.2014 18:42, Sebastian Brestin:
> > I've speed read the book Nmap Network Scanning. But I have no clue in
> which
> > direction to investigate more. And time is not my friend. Please give me
> a
> > thinner direction than "read up on OS detection".
> >
> > -sgb
>
> 1. Have you tried --osscan-guess?
> 2. Did you find at least one open and one closed TCP port and one closed
> UDP port?
> 3. Did you test debug output to see why Nmap complains about no perfect
> match?
> 4. Maybe your firewall messes with the packets?
>
> I can also see you're using -sT, which is a connect() scan - I would try
> -sS just to make sure.
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/