Nmap Development mailing list archives

Re: nsock SSL error with SOC5

From: Brandon Enright <bmenrigh () ucsd edu>
Date: Wed, 22 Aug 2007 20:17:32 +0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Jason, all,

I've been getting the same issue with the SOC SVN branch that I compile
myself.  I've tried giving configure a number of different options to try
to resolve the problem but haven't had any luck.

The switch that is causing it is '-sV' when the service fingerprinting sees
that a service is wrapped with SSL it still sends all the same probes, only
in a SSL'd channel instead.  If I scan hosts that do not have SSL wrapped
services I do not get the error.

I've been operating under the assumption that I was compiling Nmap wrong
and not that there is actually a bug.  If I can provide any logs etc to
help troubleshoot I'm happy to do so.

Brandon


On Wed, 22 Aug 2007 14:38:51 -0500
"DePriest, Jason R." <jrdepriest () gmail com> wrote:

This may not be a new problem, but this is the first time I have
encountered it.

I am running an 'intense' scan.
/usr/local/bin/nmap -v -sSUV -O -p- --traceroute --reason
--script=intrusive,discovery,safe,backdoor,vulnerability,malware
10.x.y.z

The error comes after the port scans and during the service scan:
nsock_connect_ssl called - but nsock was built w/o SSL support.  QUITTING

The config.log for nsock shows that it successfully found openssl and
that it was good to go.

I have not had time to remove options individually to see if I can
figure out which switch is causing it.

Also, I didn't get this error with SOC3, but again, I may not have run
the exact same command -line options.  For instance, I normally don't
so 'intrusive' scripts (usually just sC) and I normally do ports
T:-,U[1-65535].

But, if I run the scan with those options, it crashes.  Maybe there is
a service on this particular host that is doing something unexpected.

If  you'd like to see debug / packet output, let me know.  No need to
send unnecessary bytes if nobody needs it.

-Jason

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFGzJncqaGPzAsl94IRAhWrAJ9qc3NdgxlCtfTtm5ING7yB6hi0XwCfWuGw
IiVYaej5vRc5bXpIfPKdEIg=
=2wB0
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

nsock SSL error with SOC5 DePriest, Jason R. (Aug 22)
- Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 22)
- Re: nsock SSL error with SOC5 Brandon Enright (Aug 22)
- Re: nsock SSL error with SOC5 David Fifield (Aug 22)
  - Re: nsock SSL error with SOC5 Fyodor (Aug 22)
  - Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 23)
    - Re: nsock SSL error with SOC5 David Fifield (Aug 23)
    - Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 23)