Re: beta29 on Darwin

[Paul Tod Rieger <prie () abl com>]

A few more data points while trying nmap 2.54beta29 on
AppleBSD 10.0.4:

network configuration:
   172.16.100.0/24 DHCP network (mostly w98)
   172.16.100.119: iBook

1) no surprises while scanning a random host
# ping 172.16.100.229 (host is up)
# nmap -vv -n -sS -O -p'130-140' 172.16.100.229
   finds 139/tcp open
   guesses w98


2) but scanning more hosts just hangs
# nmap -vv -n -sS -O -p'80,139' 172.16.100.229-249


3) likewise, trying to find more hosts goes nowhere
# nmap -vv -n -sP 172.16.100.0/24 (hangs)
# nmap -vv -n -sP 172.16.100.1-11 (hangs)
# nmap -vv -n -sP 172.16.100.111-119 (hangs)
# nmap -vv -n -sP 172.16.100.118-119 (hangs)


4) finding more hosts manually
iBook: 172.16.100.119
# ping 172.16.100.120 (host is up)
# ping 172.16.100.121 (host is up)
# ping 172.16.100.122 (host is *not* up)


5) ping-scanning these with nmap
# nmap -vv -n -sP 172.16.100.119-120
   both hosts up
# nmap -vv -n -sP 172.16.100.119-122
   Host  (172.16.100.119) appears to be up.
   then hangs
# nmap -vv -n -sP 172.16.100.119-121
   all 3 hosts up


6) OS-scanning the range that ping-scanned OK
# nmap -vv -n -sS -O -p'21,139' 172.16.100.119-121
   all correct


7) OS-scanning the range that hangs the ping scan
# nmap -vv -n -sS -O -p'21,139' 172.16.100.119-122
   172.16.100.119 correct
   then hangs
# nmap -vv -n -sS -O -p'21,139' 172.16.100.119-129
   172.16.100.119 correct
   then hangs


8) incrementing both ends of the range
# nmap -vv -n -sP 172.16.100.120-122
   hangs (no info)
# nmap -vv -n -sS -O -p'21,139' 172.16.100.120-122
   hangs (no info)
# nmap -vv -n -sS -O -p'80,139' 172.16.100.120
   finds 139/tcp open
   guesses w98


Hmmm, "Darwin" seems more like "Piltdown"....

Tod
abl.com


---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).