[ILUG] nmap

From: Paul O'Neil (poneil at domain dbiassociates.net)
Date: Fri 05 Jul 2002 - 13:21:05 IST

• Next message: Vincent Cunniffe: "Re: [ILUG] nmap"
• Previous message: Justin MacCarthy: "[ILUG] xargs question.."
• Next in thread: Vincent Cunniffe: "Re: [ILUG] nmap"
• Reply: Vincent Cunniffe: "Re: [ILUG] nmap"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

I posted this question to a security news group and got back the answer "its
time for a kernel upgrade". I'm not sure what that meant since I'm using the
latest. Perhaps a recompile with certain options is in order I dont know,
but the question was this. After running NMAP against an iptables linux box
and a cisco router firewall feature set one difference in the results I
noted was that for the Linux box it displayed this at the end of the results

Remote operating system guess: Linux Kernel 2.4.0 - 2.4.18 (X86)
Uptime 0.523 days (since Wed Jul 3 16:03:12 2002)
TCP Sequence Prediction: Class=random positive increments
                         Difficulty=642160 (Good luck!)
IPID Sequence Generation: All zeros

The "GOOD LUCK" comment bother me. For the Cisco router it said "medium"
instead of good luck. What exactly does this measurement mean?

• Next message: Vincent Cunniffe: "Re: [ILUG] nmap"
• Previous message: Justin MacCarthy: "[ILUG] xargs question.."
• Next in thread: Vincent Cunniffe: "Re: [ILUG] nmap"
• Reply: Vincent Cunniffe: "Re: [ILUG] nmap"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.6 : Thu 06 Feb 2003 - 13:17:41 GMT