Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] isakmp aggressive mode and version detection

From: David Fifield <david () bamsoftware com>
Date: Sun, 20 Jan 2013 22:39:34 -0800
On Sat, Jan 19, 2013 at 04:20:15PM +0100, Jesper Kückelhahn wrote:

I've debugged and enhanced this script, so it should be more robust and
have better version detection on some systems.


I'm getting this error against a dummy Ncat listener:
$ sudo ncat -l --udp 500 -k --sh-exec "cat > /dev/null"
$ sudo ./nmap -p 500 -sU localhost --script=ike-version -d
NSE: ike-version against 127.0.0.1:500 threw an error!
/home/david/nmap-git/nselib/ike.lua:183: bad argument #1 to 'pairs' (table expected, got nil)
stack traceback:
        [C]: in function 'pairs'
        /home/david/nmap-git/nselib/ike.lua:183: in function 'lookup'
        /home/david/nmap-git/nselib/ike.lua:310: in function </home/david/nmap-git/nselib/ike.lua:290>
        (...tail calls...)
        scripts/ike-version.nse:58: in function 'get_version'
        scripts/ike-version.nse:100: in function <scripts/ike-version.nse:99>
        (...tail calls...)

I seem to get the same error when I try to install an IKE listener to
test against. I tried the Debian packages strongswan-ikev1 (pluto) and
strongswan-ikev2 (charon), and netstat says they are listening on port
500, but I get the same error as above. What do you recommend testing
against?

David Fifield
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: