Re: Nmap 4.60 released

[Brandon Enright <bmenrigh () ucsd edu>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thu, 20 Mar 2008 17:19:00 -0700
Fyodor <fyodor () insecure org> wrote:

> On Mon, Mar 17, 2008 at 04:42:15PM +0000, DePriest, Jason R. wrote:
> > I updated Doug's qscan patch for the 4.60 source code.
>
> Are many people here using qscan?  Maybe we should integrate it into
> Nmap proper.  Can people here reply with descriptions of how they most
> commonly use it?
>
> Thanks,
> -F

I've used qscan to test the effects of traffic classification rules on
a L7 protocol analyzing load balancer (Packeteer packet shaper
product).

I was using hping2 to gather stats for different ports to infer the
effects of different classification rules but even minor changes were
tedious to measure the effects of.  Qscan automated the whole
measurement portion of the process.

One change I'd like to see to qscan is that it become another option
like traceroute rather than its own scan.  I'd like to be able to run
discovery and standard port scanning and then at the end, have qscan
run to lump the ports into buckets.  I don't believe this would
sacrifice any power or flexibility and would make qscan integrate into
Nmap as though it were just another --feature rather than a completly
different mode.

Brandon

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.7 (GNU/Linux)

iD8DBQFH4wYBqaGPzAsl94IRAoqAAKCpNmbH2IzzgLeBuVS88TeUlzXp7gCdGU4T
nVbDNOjSSQuXKXlWOfDctnY=
=tFy/
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org