To add to this, I have tried from the command line using a custom conf
file. I have also tried it via the gui, and manually checking the radio
box next to "SYN" under nmap wrapper settings. I have also tried this
on three different scanners, one I installed this morning.
Thanks,
Pete Duffin
-----Original Message-----
From: nessus-bounces@list.nessus.org
[mailto:nessus-bounces@list.nessus.org] On Behalf Of Duffin, Pete
(BL60:9622)
Sent: Tuesday, June 05, 2007 11:25 AM
To: George A. Theall; nessus@list.nessus.org
Subject: Portscan issue on 2.2.9
Hi,
I am having a problem specifying which type of ports scan is being run.
In my config file, I have:
Nmap (NASL wrapper)[radio]:TCP scanning technique : = SYN scan
And do not have another line like this, it's the only one.
When I run my scan, I do ps -ef to see what command nessus is passing to
nmap, and I see:
nmap -n -P0 -oG /usr/local/var/nessus/tmp/nmap-10.10.10.10-83168732 -sT
-p 1-65535
To me, this is nmap doing a connect scan, which is causing an
applicationt o crash. If I nmap on it manually and do a SYN scan, the
application does not crash, which is the reason I'd like nessus to use
NMAP doing a SYN scan.
Anybody know why Nessus isn't passing nmap the -sS option instead of the
-sT option?
Thanks,
Pete Duffin
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
|