m*****e
发帖数: 4193 | |
l**u
发帖数: 35 | 2
Why not?
Try it yourselft. For me it works.
【在 m*****e 的大作中提到】
: No, you can't.
|
h**h
发帖数: 132 | 3 you have to be root to run nmap for udp scan
but for tcp scan, you should be able to run as anormal user
at least it works for me
【在 l**u 的大作中提到】
:
: Why not?
: Try it yourselft. For me it works.
|
m*****e
发帖数: 4193 | 4 How could you know I hadn't tried it? Using nmap is one thing in my job.
You won't get full functionality without being root. It needs to construct
customized packets to detect OS types, for example.
【在 l**u 的大作中提到】
:
: Why not?
: Try it yourselft. For me it works.
|
m*****e
发帖数: 4193 | 5 Probably the only thing he can do is TCP scan, which is the easiest job
of nmap.
UDP scan is entirely different (and much tricker). You need the ability
to receive ICMP packets, which requires root. I've written such an utility
myself to monitor the health of the DHCP server in my department.
【在 h**h 的大作中提到】
: you have to be root to run nmap for udp scan
: but for tcp scan, you should be able to run as anormal user
: at least it works for me
|
h**h
发帖数: 132 | 6 Have you tried installing nmap on Solaris?
did you ever make it work to scan udp port?
I was only able to run udp scan off linux box
【在 m*****e 的大作中提到】
: Probably the only thing he can do is TCP scan, which is the easiest job
: of nmap.
: UDP scan is entirely different (and much tricker). You need the ability
: to receive ICMP packets, which requires root. I've written such an utility
: myself to monitor the health of the DHCP server in my department.
|
m*****e
发帖数: 4193 | 7 Of course. I don't remember I had any problem installing it.
【在 h**h 的大作中提到】
: Have you tried installing nmap on Solaris?
: did you ever make it work to scan udp port?
: I was only able to run udp scan off linux box
|
h**h
发帖数: 132 | 8 Maybe you can help me out,
this is the error message when I tried to start nmap as root
[root@photon ~]> nmap isdn
Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
pcap_open_live: /dev/lo0: No such file or directory
If you are on Linux and getting Socket type not supported, try modprobe af_packe
t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
ing device not configured, you need to recompile your kernel with Berkeley Packe
t Filter support.
【在 m*****e 的大作中提到】
: Of course. I don't remember I had any problem installing it.
|
m*****e
发帖数: 4193 | 9 Which version of Solaris? It seems to have problems with 2.6. I didn't try
it on 2.6.
【在 h**h 的大作中提到】
: Maybe you can help me out,
: this is the error message when I tried to start nmap as root
: [root@photon ~]> nmap isdn
: Starting nmap V. 2.12 by Fyodor (f****[email protected], www.insecure.org/nmap/)
: pcap_open_live: /dev/lo0: No such file or directory
: If you are on Linux and getting Socket type not supported, try modprobe af_packe
: t or recompile your kernel with SOCK_PACKET enabled. If you are on bsd and gett
: ing device not configured, you need to recompile your kernel with Berkeley Packe
: t Filter support.
|
h**h
发帖数: 132 | 10 it's on 2.7
【在 m*****e 的大作中提到】
: Which version of Solaris? It seems to have problems with 2.6. I didn't try
: it on 2.6.
|
|
|
m*****e
发帖数: 4193 | 11 Then try upgrading it to 2.53 or later (if there is a newer version)
【在 h**h 的大作中提到】
: it's on 2.7
|
h**h
发帖数: 132 | 12 that's what I am doing right now
【在 m*****e 的大作中提到】
: Then try upgrading it to 2.53 or later (if there is a newer version)
|
h**h
发帖数: 132 | 13 that's interesting, seems that my problem was a typical one
there is explanation in nmap 2.53
SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
e or directory', complain to Sun. I don't think Solaris can support advanced lo
calhost scans. You can probably use "-P0 -sT localhost" though.
I wonder how you fixed that/.
【在 h**h 的大作中提到】
: that's what I am doing right now
|
m*****e
发帖数: 4193 | 14 You are right, I just tried localhost and the same problem arised.
【在 h**h 的大作中提到】
: that's interesting, seems that my problem was a typical one
: there is explanation in nmap 2.53
: SOLARIS: If you are trying to scan localhost and getting '/dev/lo0: No such fil
: e or directory', complain to Sun. I don't think Solaris can support advanced lo
: calhost scans. You can probably use "-P0 -sT localhost" though.
: I wonder how you fixed that/.
|
l**u
发帖数: 35 | 15
呵呵。不好意思"try it ..."是对提问的人说的。
这话我同意,可是你不能仅仅告诉别人"no you can't"吧。
【在 m*****e 的大作中提到】
: How could you know I hadn't tried it? Using nmap is one thing in my job.
: You won't get full functionality without being root. It needs to construct
: customized packets to detect OS types, for example.
|
m*****e
发帖数: 4193 | 16
仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
【在 l**u 的大作中提到】
:
: 呵呵。不好意思"try it ..."是对提问的人说的。
: 这话我同意,可是你不能仅仅告诉别人"no you can't"吧。
|
p***r
发帖数: 49 | 17 Thank you for your reply. I tried nmap both as a root and
as a user. I like
the function to guess host's OS.
By the way, I am NOT interested in eavesdroping the
packets in an ethernet, which can be done with a lot of
softwares though. And I don't think nmap or
tcpdump can monitor a network. I am a newcomer in info
security, but I am
not a new comer in OS or TCP/IP.
I will appreciate a reply but I do not 100% trust it
before I do the
experiment by myself.
Anyway, thanks again for your re
【在 m*****e 的大作中提到】
:
: 仔细看看他原来的问题,他要用tcpdump监视网络。这个功能没有root是没法用的。
|
m*****e
发帖数: 4193 | 18
Then your system must have a weird (or dangerous/incorrect) setting
which allows normal users to use raw socket, assuming your nmap is
not setuid root (since you claim you are not a new comer in OS).
Oh I was confused by your question. I would have appreciated it if
you had made clear what "cannot read socket" means.
This makes me more confused.
【在 p***r 的大作中提到】
: Thank you for your reply. I tried nmap both as a root and
: as a user. I like
: the function to guess host's OS.
: By the way, I am NOT interested in eavesdroping the
: packets in an ethernet, which can be done with a lot of
: softwares though. And I don't think nmap or
: tcpdump can monitor a network. I am a newcomer in info
: security, but I am
: not a new comer in OS or TCP/IP.
: I will appreciate a reply but I do not 100% trust it
|
p***r
发帖数: 49 | 19 I didn't say I could use fingerprint function as a
non-root. The help
given by nmap is very clear, only root could use stared
functions.
What I meant is that "I can not read some sockets as a
non-root in my linux."
I said I am not good in security, but I will learn it and
read papers in
the winter.
【在 m*****e 的大作中提到】
:
: Then your system must have a weird (or dangerous/incorrect) setting
: which allows normal users to use raw socket, assuming your nmap is
: not setuid root (since you claim you are not a new comer in OS).
: Oh I was confused by your question. I would have appreciated it if
: you had made clear what "cannot read socket" means.
: This makes me more confused.
|
