Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Sounds like ftp-anon needs work?

From: Ron <ron () skullsecurity net>
Date: Thu, 20 May 2010 14:19:20 -0500
On Wed, 19 May 2010 21:09:44 +0100 Rob Nicholls
<robert () robnicholls co uk> wrote:

It seems that a small minority of servers will simply accept
"anonymous" without prompting for a password, so we need to check the
first line for a 230 response rather than discarding it. How does the
following sound instead?

I told you this off list, but I thought I'd let everybody know. This definitely happens. PureFTPd, one of the servers 
we were testing on, seems to do that occasionally (but not always). 

A second issue we noticed is that during a -sS scan, it worked, but with a -sT or -sV scan, it didn't. I assume this is 
because the FTPd did some rate limiting when it saw an actual connection (instead of a half-open). If we upped the 
timeout to 30 seconds, everything worked fine. 

-- 
Ron Bowes
http://www.skullsecurity.org
http://www.twitter.com/iagox86

Attachment: _bin
Description: 

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: