Nmap Development mailing list archives

Re: This loop can't be good

From: Daniel Miller <bonsaiviking () gmail com>
Date: Tue, 19 Jun 2012 17:16:53 -0500

On 06/19/2012 05:10 PM, Whit Blauvelt wrote:

Hi,

Doing the search I see recent discussion on this list of this sort of loop,
which I'm seeing today running Zenmap on the "Slow comprehensive scan"
profile, i.e.

nmap -sS -sU -T4 -A -v -PE -PP -PS21,22,23,25,80,113,31339 -PA80,113,443,10042 -PO -e eth0 --script all xx.yy.zz.aa/27

tarting Nmap 6.01 ( http://nmap.org ) at 2012-06-19 08:14 EDT
NSE: Loaded 348 scripts for scanning.
NSE: Script Pre-scanning.
Initiating NSE at 08:14
NSE Timing: About 89.74% done; ETC: 08:19 (0:00:30 remaining)
NSE Timing: About 89.74% done; ETC: 08:19 (0:00:33 remaining)
NSE Timing: About 89.74% done; ETC: 08:20 (0:00:38 remaining)
NSE Timing: About 89.74% done; ETC: 08:21 (0:00:42 remaining)
NSE Timing: About 89.74% done; ETC: 08:21 (0:00:47 remaining)
NSE Timing: About 89.74% done; ETC: 08:22 (0:00:52 remaining)
NSE Timing: About 89.74% done; ETC: 08:23 (0:00:59 remaining)
NSE Timing: About 89.74% done; ETC: 08:24 (0:01:05 remaining)
NSE Timing: About 89.74% done; ETC: 08:26 (0:01:13 remaining)
NSE Timing: About 89.74% done; ETC: 08:27 (0:01:21 remaining)
NSE Timing: About 89.74% done; ETC: 08:29 (0:01:31 remaining)
NSE Timing: About 89.74% done; ETC: 08:30 (0:01:42 remaining)
NSE Timing: About 89.74% done; ETC: 08:32 (0:01:54 remaining)
NSE Timing: About 89.74% done; ETC: 08:34 (0:02:07 remaining)
NSE Timing: About 89.74% done; ETC: 08:37 (0:02:21 remaining)
NSE Timing: About 89.74% done; ETC: 08:39 (0:02:38 remaining)
NSE Timing: About 89.74% done; ETC: 08:42 (0:02:56 remaining)
NSE Timing: About 89.74% done; ETC: 08:46 (0:03:16 remaining)
NSE Timing: About 89.74% done; ETC: 08:49 (0:03:39 remaining)
NSE Timing: About 89.74% done; ETC: 08:53 (0:04:04 remaining)
NSE Timing: About 89.74% done; ETC: 08:58 (0:04:32 remaining)
NSE Timing: About 89.74% done; ETC: 09:03 (0:05:03 remaining)
NSE Timing: About 89.74% done; ETC: 09:09 (0:05:38 remaining)
NSE Timing: About 89.74% done; ETC: 09:15 (0:06:17 remaining)
NSE Timing: About 89.74% done; ETC: 09:22 (0:07:00 remaining)
NSE Timing: About 89.74% done; ETC: 09:30 (0:07:48 remaining)
NSE Timing: About 89.74% done; ETC: 09:39 (0:08:42 remaining)
NSE Timing: About 89.74% done; ETC: 09:48 (0:09:42 remaining)
NSE Timing: About 89.74% done; ETC: 09:59 (0:10:49 remaining)
NSE Timing: About 89.74% done; ETC: 10:11 (0:12:03 remaining)
NSE Timing: About 89.74% done; ETC: 10:25 (0:13:26 remaining)
NSE Timing: About 89.74% done; ETC: 10:40 (0:14:59 remaining)
NSE Timing: About 89.74% done; ETC: 10:56 (0:16:41 remaining)
NSE Timing: About 89.74% done; ETC: 11:15 (0:18:36 remaining)
NSE Timing: About 89.74% done; ETC: 11:36 (0:20:43 remaining)
NSE Timing: About 89.74% done; ETC: 11:59 (0:23:06 remaining)
NSE Timing: About 89.74% done; ETC: 12:25 (0:25:44 remaining)
NSE Timing: About 89.74% done; ETC: 12:53 (0:28:41 remaining)
NSE Timing: About 89.74% done; ETC: 13:25 (0:31:58 remaining)
NSE Timing: About 89.74% done; ETC: 14:01 (0:35:37 remaining)
NSE Timing: About 89.74% done; ETC: 14:41 (0:39:42 remaining)
NSE Timing: About 89.74% done; ETC: 15:25 (0:44:14 remaining)
NSE Timing: About 89.74% done; ETC: 16:14 (0:49:18 remaining)
NSE Timing: About 89.74% done; ETC: 17:09 (0:54:56 remaining)
NSE Timing: About 89.74% done; ETC: 18:11 (1:01:13 remaining)

Hangs for every at 89.74%, keeps incrementing the time. And nearly 10 hours
later, still in that loop.

This is nmap-6.01 compiled from source on a Ubuntu 12.04 box. The "Intense
scan" profile worked fine from this same system to the same remote subnet,
but didn't require adding a port specification (-e eth0) as this one did.

Whit

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Running with "--script all" is not recommended, since there is at leastone script which will never finish (smb-flood), and several which arehazardous (dns-fuzz, category dos, etc).


Dan
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

This loop can't be good Whit Blauvelt (Jun 19)
- Re: This loop can't be good Daniel Miller (Jun 19)
- Re: This loop can't be good David Fifield (Jun 19)
  - Re: This loop can't be good Whit Blauvelt (Jun 19)
    - Re: This loop can't be good David Fifield (Jun 19)
    - A hang towards the end of the "Slow comprehensive scan" Whit Blauvelt (Jun 20)
    - Re: A hang towards the end of the "Slow comprehensive scan" David Fifield (Jun 20)
    - Re: A hang towards the end of the "Slow comprehensive scan" Daniel Miller (Jun 20)