Security Basics mailing list archives

Re: Nmap

From: Mind Booster Noori <mbooster () talkerspt no-ip org>
Date: Thu, 11 Aug 2005 11:51:14 +0100 (WEST)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tue, 9 Aug 2005, Mathew Jose wrote:

Hi,

I am using Nmap  version 3.00  to do a ping sweep of a network on
Enterprise Redhat Linux   2.4.21-27.


Thh command line I use is  "nmap -sP 192.168.1.1/24 "


When I am running the ping sweep as normal user   I am able to
discover some  devices in the network.

But when I run the ping sweep as root user it is detecting more
devices and in some cases reporting non existing host as running.

Anyone hit this issue before ?


- From $ man nmap :

  Significant effort has been put into decent nmap performance for
  non-root users.  Unfortunately, many critical kernel  interfaces
  (such  as  raw sockets) require root privileges.  nmap should be run
  as root whenever possible (not setuid root, of course).


So yes, it's normal to get more and better results if you're running
nmap as root.

Marcos Marado

- --/* *********************************************************** */

   Marcos Daniel Marado Torres     AKA      Mind Booster Noori
   WWW:                 http://talkerspt.no-ip.org/~mbooster
   e-mail:              mbooster () talkerspt no-ip org
   ()   Join the ASCII ribbon campaign against HTML e-mail and
   /\   Microsoft attachments.        They endanger the World.
/* *********************************************************** */


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFC+y2qmNlq8m+oD34RAgxBAKC/b8rJHiUFtLArKfFL/RLx10xQoACcC8Ro
sTXJmF2nGr3Vtr3pNGkVSzs=
=IJlr
-----END PGP SIGNATURE-----

Current thread:

Nmap Mathew Jose (Aug 10)
- Re: Nmap Mind Booster Noori (Aug 12)
- RE: Nmap Steve Fletcher (Aug 12)
- <Possible follow-ups>
- RE: Nmap Rochford, Paul (Aug 12)