Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Nessus>
  3. devel
SYN FIN scan
arboi at noos
Oct 24, 2002, 6:47 AM
Post #1 of 4 (681 views)
Permalink
Here is a patch for nmap_wrapper to handle SYN FIN scans.

It is good because:
+ http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00275.html

It is bad because:
+ Christmas Tree scan does the same thing, more or less.
+ This needs nmap 3.00 (no scanflags option in 2.54BETA)
+ The way nmap handles the *undocumented* scanflags option is not
great and may change later
(-sU disables --scanflags unless -sS is added)

Yes / No ?

Attached Files:

Re: SYN FIN scan [ In reply to ]
deraison at nessus
Oct 24, 2002, 6:53 AM
Post #2 of 4 (670 views)
Permalink
On Thu, Oct 24, 2002 at 03:47:12PM +0200, Michel Arboi wrote:
> Here is a patch for nmap_wrapper to handle SYN FIN scans.
>
> It is good because:
> + http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00275.html
>
> It is bad because:
> + Christmas Tree scan does the same thing, more or less.
> + This needs nmap 3.00 (no scanflags option in 2.54BETA)
> + The way nmap handles the *undocumented* scanflags option is not
> great and may change later
> (-sU disables --scanflags unless -sS is added)
>
> Yes / No ?

It might be interesting to start checking which version of nmap we have
at hand, and show the user the options depending on the result, because
this way, we won't have users thinking nmap is running whereas it's not
because of the use of a too new version.

That is, in the function plugin_init(), we could have something like:


int plugin_init()
{
int version = get_nmap_version(); /* This executes nmap -V and parses
the output */

if(version > 0300)
show_some_3x_specific_option();
else
show_less_options();
}



-- Renaud
RE: SYN FIN scan [ In reply to ]
Axel.Nennker at t-systems
Oct 24, 2002, 7:52 AM
Post #3 of 4 (672 views)
Permalink
I suggest to make this a "configure time" option.

There are several ways to do this.

Problem with this approach: there is currently no mechanism to configure the plugins (I think)
We could change make_world to configure the plugins first, but this is not really correct.

I think we should start to use AC_CONFIG_SUBDIRS here...

> -----Original Message-----
> From: Renaud Deraison [mailto:deraison@nessus.org]
> Sent: Thursday, October 24, 2002 3:53 PM
> To: nessus-devel@list.nessus.org
> Subject: Re: SYN FIN scan
>
>
> On Thu, Oct 24, 2002 at 03:47:12PM +0200, Michel Arboi wrote:
> > Here is a patch for nmap_wrapper to handle SYN FIN scans.
> >
> > It is good because:
> > + http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00275.html
> >
> > It is bad because:
> > + Christmas Tree scan does the same thing, more or less.
> > + This needs nmap 3.00 (no scanflags option in 2.54BETA)
> > + The way nmap handles the *undocumented* scanflags option is not
> > great and may change later
> > (-sU disables --scanflags unless -sS is added)
> >
> > Yes / No ?
>
> It might be interesting to start checking which version of
> nmap we have
> at hand, and show the user the options depending on the
> result, because
> this way, we won't have users thinking nmap is running
> whereas it's not
> because of the use of a too new version.
>
> That is, in the function plugin_init(), we could have something like:
>
>
> int plugin_init()
> {
> int version = get_nmap_version(); /* This executes nmap -V and parses
> the output */
>
> if(version > 0300)
> show_some_3x_specific_option();
> else
> show_less_options();
> }
>
>
>
> -- Renaud
>
Re: SYN FIN scan [ In reply to ]
deraison at nessus
Oct 24, 2002, 8:01 AM
Post #4 of 4 (671 views)
Permalink
On Thu, Oct 24, 2002 at 04:52:05PM +0200, Nennker, Axel wrote:
> I suggest to make this a "configure time" option.

I'm against this - you can upgrade nmap after having installed Nessus,
and this should not force you to re-install nessus-plugins.



-- Renaud

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal