johnh10000 |
02-15-2010 04:41 AM |
decided to abandon ipkungfu
now trying gufw and ufw
here is my current nmap output
Code:
johnh10000@tux:~$ nmap -v -A 192.168.1.3
Starting Nmap 4.76 ( http://nmap.org ) at 2010-02-15 10:24 GMT
Initiating Ping Scan at 10:24
Scanning 192.168.1.3 [1 port]
Completed Ping Scan at 10:24, 0.00s elapsed (1 total hosts)
Initiating Connect Scan at 10:24
Scanning tux.isa-geek.org (192.168.1.3) [1000 ports]
Discovered open port 80/tcp on 192.168.1.3
Discovered open port 21/tcp on 192.168.1.3
Discovered open port 111/tcp on 192.168.1.3
Discovered open port 139/tcp on 192.168.1.3
Discovered open port 10000/tcp on 192.168.1.3
Discovered open port 4443/tcp on 192.168.1.3
Discovered open port 901/tcp on 192.168.1.3
Discovered open port 6006/tcp on 192.168.1.3
Discovered open port 8080/tcp on 192.168.1.3
Discovered open port 5900/tcp on 192.168.1.3
Discovered open port 16001/tcp on 192.168.1.3
Discovered open port 445/tcp on 192.168.1.3
Completed Connect Scan at 10:24, 1.19s elapsed (1000 total ports)
Initiating Service scan at 10:24
Scanning 12 services on tux.isa-geek.org (192.168.1.3)
Completed Service scan at 10:27, 135.47s elapsed (12 services on 1 host)
SCRIPT ENGINE: Initiating script scanning.
SCRIPT ENGINE: '/usr/share/nmap/scripts/dns-test-open-recursion.nse' threw a run time error and could not be loaded.
SCRIPT ENGINE: '/usr/share/nmap/scripts/skype_v2-version.nse' threw a run time error and could not be loaded.
SCRIPT ENGINE: error while initializing script rules:
/usr/share/nmap/scripts/script.db:20: rpcinfo.nse is not a file!
stack traceback:
[C]: in function 'Entry'
/usr/share/nmap/scripts/script.db:20: in main chunk
[C]: ?
[C]: ?
SCRIPT ENGINE: Aborting script scan.
Host tux.isa-geek.org (192.168.1.3) appears to be up ... good.
Interesting ports on tux.isa-geek.org (192.168.1.3):
Not shown: 988 closed ports
PORT STATE SERVICE VERSION
21/tcp open ftp (Generally vsftp or WU-FTPD)
80/tcp open http Apache httpd 2.2.11 ((Ubuntu) PHP/5.2.6-3ubuntu4.5 with Suhosin-Patch mod_perl/2.0.4 Perl/v5.10.0)
111/tcp open rpcbind
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: WORKGROUP)
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: WORKGROUP)
901/tcp open http Samba SWAT administration server
4443/tcp open unknown?
5900/tcp open vnc VNC (protocol 3.7)
6006/tcp open X11:6?
8080/tcp open http TwistedWeb httpd 8.2.0
10000/tcp open http Webmin httpd
16001/tcp open tcpwrapped
2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port21-TCP:V=4.76%I=7%D=2/15%Time=4B7920FB%P=i686-pc-linux-gnu%r(NULL,2
SF:3,"220\x20Welcome\x20to\x20Tux's\x20FTP\x20service\.\r\n")%r(GenericLin
SF:es,6F,"220\x20Welcome\x20to\x20Tux's\x20FTP\x20service\.\r\n530\x20Plea
SF:se\x20login\x20with\x20USER\x20and\x20PASS\.\r\n530\x20Please\x20login\
SF:x20with\x20USER\x20and\x20PASS\.\r\n")%r(Help,49,"220\x20Welcome\x20to\
SF:x20Tux's\x20FTP\x20service\.\r\n530\x20Please\x20login\x20with\x20USER\
SF:x20and\x20PASS\.\r\n")%r(SMBProgNeg,23,"220\x20Welcome\x20to\x20Tux's\x
SF:20FTP\x20service\.\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port6006-TCP:V=4.76%I=7%D=2/15%Time=4B7920FB%P=i686-pc-linux-gnu%r(NULL
SF:,3,"HB!")%r(X11Probe,3,"HB!")%r(GenericLines,3,"HB!")%r(HTTPOptions,3,"
SF:HB!")%r(RPCCheck,3,"HB!")%r(DNSStatusRequest,3,"HB!")%r(SSLSessionReq,3
SF:,"HB!")%r(FourOhFourRequest,3,"HB!")%r(LDAPBindReq,3,"HB!")%r(SIPOption
SF:s,3,"HB!")%r(TerminalServer,3,"HB!")%r(NotesRPC,3,"HB!")%r(oracle-tns,3
SF:,"HB!");
Read data files from: /usr/share/nmap
Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 138.47 seconds
attached is my rules why are they not the same. also ftp works on box serving, but no where else. this is a passsie ports issue, even if i open the ports still no joy. and finnaly what have i forgotten, for samba? works fine everywhere bar on tux :( disable fw works fine.
|