Subscribe: Nmap Development
http://seclists.org/rss/nmap-dev.rss
Added By: Feedage Forager Feedage Grade A rated
Language: English
Tags:
acceptance posted  apos  brute  error  lua  nmap crash  nmap  nov  posted  publickey acceptance  publickey  response  retries  script  version 
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: Nmap Development

Nmap Development



Unmoderated technical development forum for debating ideas, patches, and suggestions regarding proposed changes to Nmap and related projects. Subscribe here.



Published: Mon, 13 Nov 2017 20:00:07 GMT

Last Build Date: Mon, 13 Nov 2017 20:00:07 GMT

 



Re: Too many retries...

Mon, 13 Nov 2017 19:57:19 GMT

Posted by nnposter on Nov 13

The assumed need to use brute.retries=NNN, where NNN is some huge number
is likely off mark. The retries are meant to protect against transient
connectivity hiccups. You might be instead experiencing some fundamental
throttling, blocking or resource exhaustion on the target.

Also, there is no brute.timeout parameter implemented by the brute library.

So...

First, make sure that your brute driver is truly working as expected.
When valid...



Re: Attempt to index a nil value (local response)

Mon, 13 Nov 2017 17:26:17 GMT

Posted by Daniel Miller on Nov 13

Alo,

You are using an outdated version of Nmap, so I can't be sure exactly what
is going on. But in the current version, the connect and login functions
must return both a status and a response object. If the status is false,
the response object is checked (indexed) to determine what to do: slow
down, try again, etc. Check the documentation on the brute library to see
if there is anything you need to change:...



Too many retries...

Mon, 13 Nov 2017 08:20:10 GMT

Posted by Alo Yommist on Nov 13

s up, received syn-ack ttl 244 (0.35s latency).
Scanned at 2017-11-13 08:31:18 WAT for 423s
PORT STATE SERVICE REASON
443/tcp open https syn-ack ttl 244
| http-brute_for:
| Accounts: No valid accounts found
| Statistics: Performed 399 guesses in 422 seconds, average tps: 1.1
|_ ERROR: Too many retries, Aborted...

Hello Devs
Can some one tell me how to get rid of this too many retries error, I
thought it was brute.retries and timeout...



PR# 1064 - Fix snmp.lua for SNMPv2c

Sun, 12 Nov 2017 12:42:07 GMT

Posted by Tamizh N on Nov 12

SNMP library always falls back to SNMP v1 even when explicitly calling v2
in the helper function. This is because the version number is incorrectly
referenced as self.version instead of self.options.version in request
function.

Please review my pull request #1064 in github as a patch for this.



NSE script contribution

Wed, 08 Nov 2017 14:20:11 GMT

Posted by Sean Warnock on Nov 08

Hello All:
I would like to submit my first NSE script for the WS-Management Protocol. This script outputs additional information
for hosts that have this protocol enabled. The script is my first LUA script and first script for NSE so I am open to
recommendations to clean up up and bring it to proper nmap style.
Sean



Attempt to index a nil value (local response)

Wed, 08 Nov 2017 13:02:36 GMT

Posted by Alo Yommist on Nov 08

I kept getting this error in my script I don't know why but it's seems to
be complaining about some local response variable in my brute.lua library.
I don't know why the response value is nil. Here is the debug from my
script...

| HTTP/1.1
200 OK
Cache-Control: private
Content-Type: application/json
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors...



List with IP:Port

Wed, 08 Nov 2017 02:09:50 GMT

Posted by Patricio Castagnaro on Nov 07

Dear all,

I have a list like this:
192.168.0.4:443
192.168.0.9:80
192.168.0.10:21

Is there any possibility to provide nmap with a list like this as an input
IP:Port list?

Thank you very much in advance!



Re: nmap crash (ssh-publickey-acceptance)

Mon, 06 Nov 2017 00:43:26 GMT

Posted by Darren Martyn on Nov 05

1. Output of nmap --version
Nmap version 7.60SVN ( https://nmap.org )
Platform: x86_64-unknown-linux-gnu
Compiled with: nmap-liblua-5.3.3 openssl-1.0.2k nmap-libssh2-1.8.0
libz-1.2.8 libpcre-8.39 libpcap-1.8.1 nmap-libdnet-1.12 ipv6
Compiled without:
Available nsock engines: epoll poll select

SVN Revision: 37073

2. If I drop "-sV" the error does not occur. However, the SSH publickey
acceptance script returns "No public keys...



Re: nmap crash (ssh-publickey-acceptance)

Sat, 04 Nov 2017 03:38:48 GMT

Posted by Daniel Miller on Nov 03

Darren,

Good news and bad news. The good: I found why publickey checking wasn't
working; the helper function wasn't written to return the result of the
libssh2 call, so the result was always 'nil', which is false. So that's
cleared up in r37074, with a couple other fixes in subsequent revisions.

The bad: the results you provided don't really narrow down the problem to a
reasonable search space. I have some ideas...



Re: Talk on NSE's use of coroutines at Lua Workshop 2017

Fri, 03 Nov 2017 17:22:56 GMT

Posted by Patrick Donnelly on Nov 03

Slides are available from: https://www.lua.org/wshop17/Donnelly.pdf



Re: nmap crash (ssh-publickey-acceptance)

Fri, 03 Nov 2017 03:34:30 GMT

Posted by Daniel Miller on Nov 02

Thanks for reporting this! It seems to be a double-free occuring during NSE
garbage collection/shutdown, specifically in the nsock_pool_delete
function. I can't readily see how this could be happening, so can you give
a little more info?

1. output of nmap --version

2. Does the error occur if you do not use -sV?

3. Does the error occur if you only use -sV (i.e. not --script
ssh-publickey-acceptance)

4. If the previous 2 tests show that...



nmap crash (ssh-publickey-acceptance)

Fri, 03 Nov 2017 02:21:39 GMT

Posted by Darren Martyn on Nov 02

Attached is a log with loads of debug info. Got partially through redacting
hostnames, then stopped bothering because its a publicly routable host I
own anyway.



Re: Talk on NSE's use of coroutines at Lua Workshop 2017

Thu, 02 Nov 2017 17:18:48 GMT

Posted by Patrick Donnelly on Nov 02

Video is now available: https://www.youtube.com/watch?v=lRPMrWt-ojw



Re: [PATCH] configure.ac: fix AC_CHECK_HEADER call to test for libssh2

Thu, 02 Nov 2017 17:05:33 GMT

Posted by Max Filippov on Nov 02

I've opened an issue (#1058) and a pull request (1059) on github for this.



[PATCH] configure.ac: fix AC_CHECK_HEADER call to test for libssh2

Thu, 02 Nov 2017 17:05:32 GMT

Posted by Max Filippov on Nov 02

Building nmap as a part of the buildroot fails because in the
configure.ac test for libssh2 -lm is passed as an argument to
AC_CHECK_HEADER() instead of the AC_CHECK_LIB().

---

The patch below fixes this configure.ac bit and includes regenerated
configure script. Please consider applying this fix. For more details
please see the thread by the following URL:

http://lists.busybox.net/pipermail/buildroot/2017-November/205936.html

---
Index:...