From: Peter Kosinar (goober@ksp.sk)
Date: Fri Feb 16 2007 - 21:13:07 EST
Hello Baris,
> When i use "nmap -sS targetaddress -S spoofaddress -e eth0" command,
> nmap does not show open ports at end of scan.
In many cases, this can be attributed to fact that in order to be able to
distinguish a closed port from an open one, NMAP actually needs to see the
replies from the scanned machine... and when you use the -S with a random
address, the replies will be sent to that random address (if anywhere at
all).
The other cases include the packets being dropped by some device on their
way to / from the scanned machine (e.g. most firewalls have no reason to
let packets coming from the internal network but claiming an outside IP
through).
Peter
-- [Name] Peter Kosinar [Quote] 2B | ~2B = exp(i*PI) [ICQ] 134813278 ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:35 EDT