Re: Scanning loopback net on Win-XP

[Andy Lutomirski <luto () myrealbox com>]

Gisle Vanem wrote:
> AFAICS, the winip code doesn't consider the netmask when searching
> the iface-table. So this doesn't work:
>
>
> > nmap -sT -p1-113 127.0.0.2
>
>
> Starting nmap 3.70 ( http://www.insecure.org/nmap ) at 2004-09-01 15:22 GMT
> Unable to determine what interface to route packets through to 127.0.0.2
> QUITTING!
>
> ------
>
> Not that it matter much. But, scanning 127.0.0.1 is handy. That doesn't
> work without -P0 option on Windows because of the SIO_RCVALL option
> in rawrecv.c. After disabling the SIO_RCVALL it worked, but this funny thing 
> occured:

BAH.  WTF does Windows do _that_ for?  Is it even worth working around? 
 Commenting that line would break all other interfaces, and skipping 
the check unconditionally (IIRC) causes rawsock support to be detected 
incorrectly.  With the SP2 changes, though, that may not matter.  Maybe 
the check should be removed?

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List archive: http://seclists.org