m*e
5 楼
Probably the only thing he can do is TCP scan, which is the easiest job
of nmap.
UDP scan is entirely different (and much tricker). You need the ability
to receive ICMP packets, which requires root. I've written such an utility
myself to monitor the health of the DHCP server in my department.
【在 h**h 的大作中提到】
: you have to be root to run nmap for udp scan
: but for tcp scan, you should be able to run as anormal user
: at least it works for me
of nmap.
UDP scan is entirely different (and much tricker). You need the ability
to receive ICMP packets, which requires root. I've written such an utility
myself to monitor the health of the DHCP server in my department.
【在 h**h 的大作中提到】
: you have to be root to run nmap for udp scan
: but for tcp scan, you should be able to run as anormal user
: at least it works for me
h*h
6 楼
Have you tried installing nmap on Solaris?
did you ever make it work to scan udp port?
I was only able to run udp scan off linux box
【在 m*****e 的大作中提到】
: Probably the only thing he can do is TCP scan, which is the easiest job
: of nmap.
: UDP scan is entirely different (and much tricker). You need the ability
: to receive ICMP packets, which requires root. I've written such an utility
: myself to monitor the health of the DHCP server in my department.
did you ever make it work to scan udp port?
I was only able to run udp scan off linux box
【在 m*****e 的大作中提到】
: Probably the only thing he can do is TCP scan, which is the easiest job
: of nmap.
: UDP scan is entirely different (and much tricker). You need the ability
: to receive ICMP packets, which requires root. I've written such an utility
: myself to monitor the health of the DHCP server in my department.
h*h
8 楼
Maybe you can help me out,
this is the error message when I tried to start nmap as root
[[email protected] ~]> nmap isdn
Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
pcap_open_live: /dev/lo0: No such file or directory
If you are on Linux and getting Socket type not supported, try modprobe af_packe
t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
ing device not configured, you need to recompile your kernel with Berkeley Packe
t Filter support.
【在 m*****e 的大作中提到】
: Of course. I don't remember I had any problem installing it.
this is the error message when I tried to start nmap as root
[[email protected] ~]> nmap isdn
Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
pcap_open_live: /dev/lo0: No such file or directory
If you are on Linux and getting Socket type not supported, try modprobe af_packe
t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
ing device not configured, you need to recompile your kernel with Berkeley Packe
t Filter support.
【在 m*****e 的大作中提到】
: Of course. I don't remember I had any problem installing it.
m*e
9 楼
Which version of Solaris? It seems to have problems with 2.6. I didn't try
it on 2.6.
【在 h**h 的大作中提到】
: Maybe you can help me out,
: this is the error message when I tried to start nmap as root
: [[email protected] ~]> nmap isdn
: Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
: pcap_open_live: /dev/lo0: No such file or directory
: If you are on Linux and getting Socket type not supported, try modprobe af_packe
: t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
: ing device not configured, you need to recompile your kernel with Berkeley Packe
: t Filter support.
it on 2.6.
【在 h**h 的大作中提到】
: Maybe you can help me out,
: this is the error message when I tried to start nmap as root
: [[email protected] ~]> nmap isdn
: Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
: pcap_open_live: /dev/lo0: No such file or directory
: If you are on Linux and getting Socket type not supported, try modprobe af_packe
: t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
: ing device not configured, you need to recompile your kernel with Berkeley Packe
: t Filter support.
h*h
13 楼
that's interesting, seems that my problem was a typical one
there is explanation in nmap 2.53
SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
e or directory', complain to Sun. I don't think Solaris can support advanced lo
calhost scans. You can probably use "-P0 -sT localhost" though.
I wonder how you fixed that/.
【在 h**h 的大作中提到】
: that's what I am doing right now
there is explanation in nmap 2.53
SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
e or directory', complain to Sun. I don't think Solaris can support advanced lo
calhost scans. You can probably use "-P0 -sT localhost" though.
I wonder how you fixed that/.
【在 h**h 的大作中提到】
: that's what I am doing right now
m*e
14 楼
You are right, I just tried localhost and the same problem arised.
【在 h**h 的大作中提到】
: that's interesting, seems that my problem was a typical one
: there is explanation in nmap 2.53
: SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
: e or directory', complain to Sun. I don't think Solaris can support advanced lo
: calhost scans. You can probably use "-P0 -sT localhost" though.
: I wonder how you fixed that/.
【在 h**h 的大作中提到】
: that's interesting, seems that my problem was a typical one
: there is explanation in nmap 2.53
: SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
: e or directory', complain to Sun. I don't think Solaris can support advanced lo
: calhost scans. You can probably use "-P0 -sT localhost" though.
: I wonder how you fixed that/.
p*r
17 楼
Thank you for your reply. I tried nmap both as a root and
as a user. I like
the function to guess host's OS.
By the way, I am NOT interested in eavesdroping the
packets in an ethernet, which can be done with a lot of
softwares though. And I don't think nmap or
tcpdump can monitor a network. I am a newcomer in info
security, but I am
not a new comer in OS or TCP/IP.
I will appreciate a reply but I do not 100% trust it
before I do the
experiment by myself.
Anyway, thanks again for your re
【在 m*****e 的大作中提到】
:
: 仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
as a user. I like
the function to guess host's OS.
By the way, I am NOT interested in eavesdroping the
packets in an ethernet, which can be done with a lot of
softwares though. And I don't think nmap or
tcpdump can monitor a network. I am a newcomer in info
security, but I am
not a new comer in OS or TCP/IP.
I will appreciate a reply but I do not 100% trust it
before I do the
experiment by myself.
Anyway, thanks again for your re
【在 m*****e 的大作中提到】
:
: 仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
m*e
18 楼
Then your system must have a weird (or dangerous/incorrect) setting
which allows normal users to use raw socket, assuming your nmap is
not setuid root (since you claim you are not a new comer in OS).
Oh I was confused by your question. I would have appreciated it if
you had made clear what "cannot read socket" means.
This makes me more confused.
【在 p***r 的大作中提到】
: Thank you for your reply. I tried nmap both as a root and
: as a user. I like
: the function to guess host's OS.
: By the way, I am NOT interested in eavesdroping the
: packets in an ethernet, which can be done with a lot of
: softwares though. And I don't think nmap or
: tcpdump can monitor a network. I am a newcomer in info
: security, but I am
: not a new comer in OS or TCP/IP.
: I will appreciate a reply but I do not 100% trust it
p*r
19 楼
I didn't say I could use fingerprint function as a
non-root. The help
given by nmap is very clear, only root could use stared
functions.
What I meant is that "I can not read some sockets as a
non-root in my linux."
I said I am not good in security, but I will learn it and
read papers in
the winter.
【在 m*****e 的大作中提到】
:
: Then your system must have a weird (or dangerous/incorrect) setting
: which allows normal users to use raw socket, assuming your nmap is
: not setuid root (since you claim you are not a new comer in OS).
: Oh I was confused by your question. I would have appreciated it if
: you had made clear what "cannot read socket" means.
: This makes me more confused.
non-root. The help
given by nmap is very clear, only root could use stared
functions.
What I meant is that "I can not read some sockets as a
non-root in my linux."
I said I am not good in security, but I will learn it and
read papers in
the winter.
【在 m*****e 的大作中提到】
:
: Then your system must have a weird (or dangerous/incorrect) setting
: which allows normal users to use raw socket, assuming your nmap is
: not setuid root (since you claim you are not a new comer in OS).
: Oh I was confused by your question. I would have appreciated it if
: you had made clear what "cannot read socket" means.
: This makes me more confused.
相关阅读
windows vista每一小时自动重起一次在学校用迅雷下载允许吗?电脑不能收邮件刚刚升级了windows 7,symantec endpoint 装不上了。Can employer check my private email. (转载)如何删除windows pc defender?高手请指导。不胜感激!别人发过来的email我却回不回去?请问wireless的安全问题请问什么软件可以锁住特定文件不允许删除如何 remove PPstream?紧急求教.电脑不能下载东西一个初初级选择题:Which does not initially appear to be a security threat?有没有cyblock高手GFW暴走中zz遇病毒,请高人指教,线上等MS停止支持XP,想做备份,请问那种备份软件比较好我的公司的电脑中了 病毒,一直生成 “System Volume Information”这样的folder求救 笔记本在实验室上网一段时间就掉线求助:文件删不掉