Nmap Development mailing list archives

Re: Re[2]: nmap+V

From: Fyodor <fyodor () insecure org>
Date: Sat, 6 Sep 2003 19:55:59 -0700

On Wed, Sep 03, 2003 at 01:30:12AM +0100, testic wrote:

Service detection certainly belongs within Nmap itself, for the very reasons
Fyodor pointed out. If service detection were to be implemented into Nmap
what level of detail would we be talking about? Would it for instance say

"Port 1234 is running a HTTP server"

or would it say

"Port 1234 is running a HTTP server (Apache1.2.3)" ?


I suppose it would say something like:

# nmap -A -T4 -F www.insecure.org

Starting nmap 3.40PVT16 ( http://www.insecure.org/nmap/ ) at 2003-09-06 19:49 PDT
Interesting ports on www.insecure.org (205.217.153.53):
(The 1206 ports scanned but not shown below are in state: filtered)
PORT    STATE  SERVICE VERSION
22/tcp  open   ssh     OpenSSH 3.1p1 (protocol 1.99)
25/tcp  open   smtp    Qmail smtpd
53/tcp  open   domain  ISC Bind 9.2.1
80/tcp  open   http    Apache httpd 2.0.39 ((Unix) mod_perl/1.99_07-dev Perl/v5.6.1)
113/tcp closed auth
Device type: general purpose
Running: Linux 2.4.X|2.5.X
OS details: Linux Kernel 2.4.0 - 2.5.20
Uptime 108.307 days (since Wed May 21 12:27:44 2003)

Nmap run completed -- 1 IP address (1 host up) scanned in 34.962 seconds


Cheers,
-F

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).

Current thread:

Re[2]: nmap+V, (continued)
- - - Re[2]: nmap+V Bo Cato (Sep 02)
  - Re: nmap+V Jay Freeman (saurik) (Sep 01)
    - Re: nmap+V Fyodor (Sep 01)
- Re: nmap+V testic (Aug 31)
- Re: nmap+V testic (Aug 31)
  - Re: nmap+V Jay Freeman (saurik) (Aug 31)
- Re: Re[2]: nmap+V Max (Sep 02)
  - Re: Re[2]: nmap+V Fyodor (Sep 02)
- Re: Re[2]: nmap+V Max (Sep 02)
- Re: Re[2]: nmap+V testic (Sep 02)
  - Re: Re[2]: nmap+V Fyodor (Sep 06)