Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: nmap showing port 21 (ftp) open, but port is actually closed

From: Paul Day <paulday () toll com au>
Date: Mon, 12 Sep 2005 09:01:08 +1000 (EST)
On Fri, 9 Sep 2005, Mike Jones wrote:

Has anyone ever seen this before, nmap is showing port 21 to be open on
a machine on the internet, but 21 is not listening on that machine.  It
happens to all machines I scan outside the local area network.


What nmap scan options were you using? By default, non-root users use the
system-supplied connect() mechanism for the TCP scanning, which I can't
see being able to false-positive. However, some of the other trickier
options could well do so.

PD

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: