Nmap Development mailing list archives

Re: [NSE] rpc library; errors during nfsd startup

From: David Fifield <david () bamsoftware com>
Date: Tue, 4 May 2010 12:27:46 -0600

On Mon, Apr 26, 2010 at 12:40:33AM +0100, Djalal Harouni wrote:

On 2010-04-21 19:17:47 -0600, David Fifield wrote:

This is related to your patch, Djalal, but it affects the current code
and your patched code so I'm replying here.

I get errors if I run the nfs and rpc scripts quickly after restarting
nfsd on the remote. This is what I see with the current code if I run
the scan up to about 3 seconds after restarting nfsd.

Hi David,

Pls use the patch commited as r17391, this will give you more verbose
output about the errors.
I don't have a Mac OS X but perhaps David this has a relation with the
init scripts, as I'm using linux with System V init scripts I can tell
you that sometimes I got some errors when restarting NFS, perhaps there
is a delay or a sleep call before NFS can be registred with portmap, in
order to honor init scripts dependencies.


Okay, I'm getting this now:

PORT    STATE SERVICE REASON
111/tcp open  rpcbind syn-ack
| rpcinfo:
|   100000  2            111/tcp  rpcbind
|   100000  2            111/udp  rpcbind
|   100021  0,1,3,4      902/udp  nlockmgr
|   100021  0,1,3,4     1022/tcp  nlockmgr
|   100024  1            831/udp  status
|_  100024  1           1021/tcp  status
| nfs-showmount:
|_  ERROR: rpc.Helper.ShowMounts: GetProgramInfo failed
| nfs-dirlist:
|_  ERROR: rpc.Helper.ShowMounts: GetProgramInfo failed
| nfs-acls:
|_  ERROR: rpc.Helper.ShowMounts: GetProgramInfo failed
| nfs-statfs:
|_  ERROR: rpc.Helper.ShowMounts: GetProgramInfo failed

After waiting a few seconds, it becomes

PORT    STATE SERVICE REASON
111/tcp open  rpcbind syn-ack
| rpcinfo:
|   100000  2            111/tcp  rpcbind
|   100000  2            111/udp  rpcbind
|   100003  2,3         2049/tcp  nfs
|   100003  2,3         2049/udp  nfs
|   100005  1,3          688/udp  mountd
|   100005  1,3         1023/tcp  mountd
|   100011  1,2          960/udp  rquotad
|   100021  0,1,3,4      902/udp  nlockmgr
|   100021  0,1,3,4     1022/tcp  nlockmgr
|   100024  1            831/udp  status
|_  100024  1           1021/tcp  status
| nfs-showmount:
|_  /Users/david 192.168.0.0
| nfs-dirlist:
|   /Users/david
|_    ERROR: Mount: RPC call failed: remote can't authenticate caller.
| nfs-acls:
|   /Users/david
|_    ERROR: Mount: RPC call failed: remote can't authenticate caller.
| nfs-statfs:
|   /Users/david
|_    ERROR: Mount: RPC call failed: remote can't authenticate caller.

So that's good, there are no uncontrolled errors, well done.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

Re: [NSE] rpc library, (continued)
- - - Re: [NSE] rpc library Djalal Harouni (Apr 18)
    - Re: [NSE] rpc library David Fifield (Apr 21)
    - Re: [NSE] rpc library; trusted inputs? David Fifield (Apr 21)
    - Re: [NSE] rpc library; trusted inputs? Djalal Harouni (Apr 26)
    - Re: [NSE] rpc library; trusted inputs? David Fifield (Apr 26)
    - Re: [NSE] rpc library; errors during nfsd startup David Fifield (Apr 21)
    - Re: [NSE] rpc library; errors during nfsd startup Patrik Karlsson (Apr 22)
    - Re: [NSE] rpc library; errors during nfsd startup Djalal Harouni (Apr 23)
    - Re: [NSE] rpc library; errors during nfsd startup Patrik Karlsson (Apr 25)
    - Re: [NSE] rpc library; errors during nfsd startup Djalal Harouni (Apr 25)
    - Re: [NSE] rpc library; errors during nfsd startup David Fifield (May 04)