Re: When nmap can't ID the OS...

[H Carvey <keydet89 () yahoo com>]

In-Reply-To: <200411261640.23084.dflists () iinet net au>


> What could be up with the remote machine that stops nmap IDing the OS it is 
> running?

Well, the info at NetCraft could have been spoofed, or old.  The system using that IP could have at one time been 
running the OS/web server identified, but perhaps no longer.  And without knowing more about what arguments you used 
for nmap, and the actual output, it might be difficult to tell you why nmap couldn't figure it out...there are several 
possibilities there.

Harlan
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com