[prev in list] [next in list] [prev in thread] [next in thread] 

List:       nmap-dev
Subject:    Re: nmap+V
From:       Jamie <aouf77 () dsl ! pipex ! com>
Date:       2003-09-02 15:44:34
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tuesday 02 September 2003 10:54, Paul Johnston wrote:
> Hi,
>
> > Ah cool. Feature request - be able to do banner grab without doing syn
> > scan
> > first to see if open since if you're going to send a syn and then
> > banner grab
> > you might as well banner grab in the first place - from memory think
> > this is
> > a problem with nmap+V.
>
> The syn scan avoids the kernel's tcp implementation and does raw IP
> itself. After this, it's not generally possible to go back to using the
> kernel's tcp sockets, without starting the connection from scratch. So
> to support this nmap would need to contain either a full tcp
> implementation, or some highly platform specific hack.

I think you missed my point. You can simply do a connect(2) to the port in 
question and grab the banner rather than doing a SYN scan first and then a 
banner grab.

- -jamie.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE/VLrm0oWsN6bx+R0RAuYlAJwKKAIQrEFUIYPRkx6RbDc1QWF1SACfSbEE
0w3bDaB2i454VeG8lX+a8H4=
=Jqep
-----END PGP SIGNATURE-----


---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help@insecure.org . List run by ezmlm-idx (www.ezmlm.org).



[prev in list] [next in list] [prev in thread] [next in thread]