m*e
5 楼
Probably the only thing he can do is TCP scan, which is the easiest job
of nmap.
UDP scan is entirely different (and much tricker). You need the ability
to receive ICMP packets, which requires root. I've written such an utility
myself to monitor the health of the DHCP server in my department.
【在 h**h 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: you have to be root to run nmap for udp scan
: but for tcp scan, you should be able to run as anormal user
: at least it works for me
of nmap.
UDP scan is entirely different (and much tricker). You need the ability
to receive ICMP packets, which requires root. I've written such an utility
myself to monitor the health of the DHCP server in my department.
【在 h**h 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: you have to be root to run nmap for udp scan
: but for tcp scan, you should be able to run as anormal user
: at least it works for me
h*h
6 楼
Have you tried installing nmap on Solaris?
did you ever make it work to scan udp port?
I was only able to run udp scan off linux box
【在 m*****e 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: Probably the only thing he can do is TCP scan, which is the easiest job
: of nmap.
: UDP scan is entirely different (and much tricker). You need the ability
: to receive ICMP packets, which requires root. I've written such an utility
: myself to monitor the health of the DHCP server in my department.
did you ever make it work to scan udp port?
I was only able to run udp scan off linux box
【在 m*****e 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: Probably the only thing he can do is TCP scan, which is the easiest job
: of nmap.
: UDP scan is entirely different (and much tricker). You need the ability
: to receive ICMP packets, which requires root. I've written such an utility
: myself to monitor the health of the DHCP server in my department.
h*h
8 楼
Maybe you can help me out,
this is the error message when I tried to start nmap as root
[[email protected] ~]> nmap isdn
Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
pcap_open_live: /dev/lo0: No such file or directory
If you are on Linux and getting Socket type not supported, try modprobe af_packe
t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
ing device not configured, you need to recompile your kernel with Berkeley Packe
t Filter support.
【在 m*****e 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: Of course. I don't remember I had any problem installing it.
this is the error message when I tried to start nmap as root
[[email protected] ~]> nmap isdn
Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
pcap_open_live: /dev/lo0: No such file or directory
If you are on Linux and getting Socket type not supported, try modprobe af_packe
t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
ing device not configured, you need to recompile your kernel with Berkeley Packe
t Filter support.
【在 m*****e 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: Of course. I don't remember I had any problem installing it.
m*e
9 楼
Which version of Solaris? It seems to have problems with 2.6. I didn't try
it on 2.6.
【在 h**h 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: Maybe you can help me out,
: this is the error message when I tried to start nmap as root
: [[email protected] ~]> nmap isdn
: Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
: pcap_open_live: /dev/lo0: No such file or directory
: If you are on Linux and getting Socket type not supported, try modprobe af_packe
: t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
: ing device not configured, you need to recompile your kernel with Berkeley Packe
: t Filter support.
it on 2.6.
【在 h**h 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: Maybe you can help me out,
: this is the error message when I tried to start nmap as root
: [[email protected] ~]> nmap isdn
: Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
: pcap_open_live: /dev/lo0: No such file or directory
: If you are on Linux and getting Socket type not supported, try modprobe af_packe
: t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
: ing device not configured, you need to recompile your kernel with Berkeley Packe
: t Filter support.
h*h
13 楼
that's interesting, seems that my problem was a typical one
there is explanation in nmap 2.53
SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
e or directory', complain to Sun. I don't think Solaris can support advanced lo
calhost scans. You can probably use "-P0 -sT localhost" though.
I wonder how you fixed that/.
【在 h**h 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: that's what I am doing right now
there is explanation in nmap 2.53
SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
e or directory', complain to Sun. I don't think Solaris can support advanced lo
calhost scans. You can probably use "-P0 -sT localhost" though.
I wonder how you fixed that/.
【在 h**h 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: that's what I am doing right now
m*e
14 楼
You are right, I just tried localhost and the same problem arised.
【在 h**h 的大作中提到】![](/moin_static193/solenoid/img/up.png)
: that's interesting, seems that my problem was a typical one
: there is explanation in nmap 2.53
: SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
: e or directory', complain to Sun. I don't think Solaris can support advanced lo
: calhost scans. You can probably use "-P0 -sT localhost" though.
: I wonder how you fixed that/.
【在 h**h 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: that's interesting, seems that my problem was a typical one
: there is explanation in nmap 2.53
: SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
: e or directory', complain to Sun. I don't think Solaris can support advanced lo
: calhost scans. You can probably use "-P0 -sT localhost" though.
: I wonder how you fixed that/.
p*r
17 楼
Thank you for your reply. I tried nmap both as a root and
as a user. I like
the function to guess host's OS.
By the way, I am NOT interested in eavesdroping the
packets in an ethernet, which can be done with a lot of
softwares though. And I don't think nmap or
tcpdump can monitor a network. I am a newcomer in info
security, but I am
not a new comer in OS or TCP/IP.
I will appreciate a reply but I do not 100% trust it
before I do the
experiment by myself.
Anyway, thanks again for your re
【在 m*****e 的大作中提到】![](/moin_static193/solenoid/img/up.png)
:
: 仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
as a user. I like
the function to guess host's OS.
By the way, I am NOT interested in eavesdroping the
packets in an ethernet, which can be done with a lot of
softwares though. And I don't think nmap or
tcpdump can monitor a network. I am a newcomer in info
security, but I am
not a new comer in OS or TCP/IP.
I will appreciate a reply but I do not 100% trust it
before I do the
experiment by myself.
Anyway, thanks again for your re
【在 m*****e 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
:
: 仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
m*e
18 楼
Then your system must have a weird (or dangerous/incorrect) setting
which allows normal users to use raw socket, assuming your nmap is
not setuid root (since you claim you are not a new comer in OS).
Oh I was confused by your question. I would have appreciated it if
you had made clear what "cannot read socket" means.
This makes me more confused.
【在 p***r 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
: Thank you for your reply. I tried nmap both as a root and
: as a user. I like
: the function to guess host's OS.
: By the way, I am NOT interested in eavesdroping the
: packets in an ethernet, which can be done with a lot of
: softwares though. And I don't think nmap or
: tcpdump can monitor a network. I am a newcomer in info
: security, but I am
: not a new comer in OS or TCP/IP.
: I will appreciate a reply but I do not 100% trust it
p*r
19 楼
I didn't say I could use fingerprint function as a
non-root. The help
given by nmap is very clear, only root could use stared
functions.
What I meant is that "I can not read some sockets as a
non-root in my linux."
I said I am not good in security, but I will learn it and
read papers in
the winter.
【在 m*****e 的大作中提到】![](/moin_static193/solenoid/img/up.png)
:
: Then your system must have a weird (or dangerous/incorrect) setting
: which allows normal users to use raw socket, assuming your nmap is
: not setuid root (since you claim you are not a new comer in OS).
: Oh I was confused by your question. I would have appreciated it if
: you had made clear what "cannot read socket" means.
: This makes me more confused.
non-root. The help
given by nmap is very clear, only root could use stared
functions.
What I meant is that "I can not read some sockets as a
non-root in my linux."
I said I am not good in security, but I will learn it and
read papers in
the winter.
【在 m*****e 的大作中提到】
![](/moin_static193/solenoid/img/up.png)
:
: Then your system must have a weird (or dangerous/incorrect) setting
: which allows normal users to use raw socket, assuming your nmap is
: not setuid root (since you claim you are not a new comer in OS).
: Oh I was confused by your question. I would have appreciated it if
: you had made clear what "cannot read socket" means.
: This makes me more confused.
相关阅读
记的以前有一篇关于用OutLook Express发信的有趣文章奇哉怪哉,关于代理Netscape 和 IE 的区别 ?怎么能看同组用户的文件,在没有权限时?[Help} how to generate certificate request in OAS9i谁知道提供免费telnet服务的服务器名? Help~~How to HACK a website!![转载] 一直感觉很苦恼--大虾们请帮忙![转载] 红客联盟发动攻击美国网站终结战(图)http://www.anonymizer.comLinux securityCIH后遗症?[转载] GGJJ DDMM们要帮我出这口气啊!Password Forgot[转载] 如何破解OFFICE VBA的密码Backdoor and LKM rootkit.启动显示 Operating System not found. 紧急求助!icq是不是与OICQ一样用UDP协议?求助: 关于proxy的设置ROCKEY加密锁驱动程序