LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-17-2006, 10:30 AM   #1
dansawyer
Member
 
Registered: Mar 2005
Posts: 124

Rep: Reputation: 15
nmap scan and vunerability ?


This question is based on the nmap scan below.

1. why did the nmap scan take so long?


Interesting ports on computer.sawyer.home (10.0.0.24):
(The 1666 ports scanned but not shown below are in state: filtered)
PORT STATE SERVICE VERSION
21/tcp closed ftp
22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
25/tcp closed smtp
80/tcp open http Apache httpd 2.2.2 ((Fedora))
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: NASQNT)
443/tcp closed https
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: NASQNT)
631/tcp closed ipp
MAC Address: 000:B7:89:30:F8 (Intel)
Device type: general purpose
Running: Linux 2.4.X|2.6.X
OS details: Linux 2.4.18 - 2.4.27, Linux 2.4.21 (Suse, X86), Linux 2.4.22, Linux 2.4.6 - 2.4.26 o r 2.6.9, Linux 2.6.10, Linux 2.6.5 - 2.6.11, Linux 2.6.7, Linux 2.6.8 (Debian)
TCP Sequence Prediction: Class=random positive increments
Difficulty=2697477 (Good luck!)
IPID Sequence Generation: All zeros

Nmap finished: 1 IP address (1 host up) scanned in 1681.877 seconds
Raw packets sent: 1851 (82.266KB) | Rcvd: 1691 (121.716KB)
 
Old 09-17-2006, 11:55 AM   #2
unixfool
Member
 
Registered: May 2005
Location: Northern VA
Distribution: Slackware, Ubuntu, FreeBSD, OpenBSD, OS X
Posts: 782
Blog Entries: 8

Rep: Reputation: 158Reputation: 158
Well, the reason it took so long could be because of a multitude of things. I'll list a few:

1. Where were you scanning from? Nmap scans between machines on a local network will be faster than when an nmap scan has to travel across the internet.

2. Could've been some network congestion between where you were scanning from and where the scanned box was.

3. What nmap switches were you using? There are numerouse things you can have nmap do. You can have it scan on TCP ports, have it do a stealth scan to attempt to bypass firewalls and other security devices... Scans also depend on what (if any) firewalls between source and destination are doing with your scan attempt.

Keep in mind that the fact that it took so long isn't exactly a bad thing. Sometimes scans take awhile. Basically, there's no real definitive answer to your question. Are the Nmap results to your liking...is there anything in the results that set off red flags for you?

I'm gonna guess that you initiated this can inside your LAN, since port 139 and 445 are open on computer.sawyer.home. Most ISPs filter on those ports to protect their networks from worms based on those ports/services.

Quote:
Originally Posted by dansawyer
This question is based on the nmap scan below.

1. why did the nmap scan take so long?


Interesting ports on computer.sawyer.home (10.0.0.24):
(The 1666 ports scanned but not shown below are in state: filtered)
PORT STATE SERVICE VERSION
21/tcp closed ftp
22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
25/tcp closed smtp
80/tcp open http Apache httpd 2.2.2 ((Fedora))
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: NASQNT)
443/tcp closed https
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: NASQNT)
631/tcp closed ipp
MAC Address: 000:B7:89:30:F8 (Intel)
Device type: general purpose
Running: Linux 2.4.X|2.6.X
OS details: Linux 2.4.18 - 2.4.27, Linux 2.4.21 (Suse, X86), Linux 2.4.22, Linux 2.4.6 - 2.4.26 o r 2.6.9, Linux 2.6.10, Linux 2.6.5 - 2.6.11, Linux 2.6.7, Linux 2.6.8 (Debian)
TCP Sequence Prediction: Class=random positive increments
Difficulty=2697477 (Good luck!)
IPID Sequence Generation: All zeros

Nmap finished: 1 IP address (1 host up) scanned in 1681.877 seconds
Raw packets sent: 1851 (82.266KB) | Rcvd: 1691 (121.716KB)
 
Old 09-17-2006, 01:58 PM   #3
dansawyer
Member
 
Registered: Mar 2005
Posts: 124

Original Poster
Rep: Reputation: 15
Thanks,

The command was: "nmap -v -A"

I don't think any congestion, all on the same local network.

How can that be shortened up?

I am planning on configuring this box to use as a firewall router. I would like for the external side to be tight.

- Dan
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
nmap scan sucram2g Linux - Security 2 03-18-2006 03:21 AM
Scan behind Router With nMap? arpanet1969 Linux - Security 1 01-28-2005 06:38 AM
Nmap with Idle scan Ephracis Linux - Security 0 12-10-2004 06:08 AM
scan my network with nmap. amer_58 Linux - Networking 3 06-17-2004 01:11 AM
nmap scan loganwva Linux - Security 5 02-25-2003 08:16 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:36 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration