Nmap Development mailing list archives
Re: nsock SSL error with SOC5
From: Brandon Enright <bmenrigh () ucsd edu>
Date: Wed, 22 Aug 2007 20:17:32 +0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jason, all, I've been getting the same issue with the SOC SVN branch that I compile myself. I've tried giving configure a number of different options to try to resolve the problem but haven't had any luck. The switch that is causing it is '-sV' when the service fingerprinting sees that a service is wrapped with SSL it still sends all the same probes, only in a SSL'd channel instead. If I scan hosts that do not have SSL wrapped services I do not get the error. I've been operating under the assumption that I was compiling Nmap wrong and not that there is actually a bug. If I can provide any logs etc to help troubleshoot I'm happy to do so. Brandon On Wed, 22 Aug 2007 14:38:51 -0500 "DePriest, Jason R." <jrdepriest () gmail com> wrote:
This may not be a new problem, but this is the first time I have encountered it. I am running an 'intense' scan. /usr/local/bin/nmap -v -sSUV -O -p- --traceroute --reason --script=intrusive,discovery,safe,backdoor,vulnerability,malware 10.x.y.z The error comes after the port scans and during the service scan: nsock_connect_ssl called - but nsock was built w/o SSL support. QUITTING The config.log for nsock shows that it successfully found openssl and that it was good to go. I have not had time to remove options individually to see if I can figure out which switch is causing it. Also, I didn't get this error with SOC3, but again, I may not have run the exact same command -line options. For instance, I normally don't so 'intrusive' scripts (usually just sC) and I normally do ports T:-,U[1-65535]. But, if I run the scan with those options, it crashes. Maybe there is a service on this particular host that is doing something unexpected. If you'd like to see debug / packet output, let me know. No need to send unnecessary bytes if nobody needs it. -Jason
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFGzJncqaGPzAsl94IRAhWrAJ9qc3NdgxlCtfTtm5ING7yB6hi0XwCfWuGw IiVYaej5vRc5bXpIfPKdEIg= =2wB0 -----END PGP SIGNATURE----- _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- nsock SSL error with SOC5 DePriest, Jason R. (Aug 22)
- Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 22)
- Re: nsock SSL error with SOC5 Brandon Enright (Aug 22)
- Re: nsock SSL error with SOC5 David Fifield (Aug 22)
- Re: nsock SSL error with SOC5 Fyodor (Aug 22)
- Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 23)
- Re: nsock SSL error with SOC5 David Fifield (Aug 23)
- Re: nsock SSL error with SOC5 DePriest, Jason R. (Aug 23)