[TOOL] Nmap Version 3.0 Released
From: support@securiteam.comDate: 08/01/02
- Previous message: support@securiteam.com: "[REVS] Hacking the Invisible Network (Insecurities in 802.11x)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Thu, 1 Aug 2002 11:59:15 +0200 (CEST)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
Nmap Version 3.0 Released
------------------------------------------------------------------------
DETAILS
We are pleased to announce that Nmap version is finally available at
<http://www.insecure.org/nmap/> http://www.insecure.org/nmap/. After more
than 2 years and 39 beta releases, the "stable" 3.00 release has arrived.
The changes in 3.00 (over 2.53) are dramatic, and we recommend that all
current users upgrade. Here is a list of the most important changes (a
much more comprehensive list is at
<http://www.insecure.org/nmap/data/CHANGELOG>
http://www.insecure.org/nmap/data/CHANGELOG:
o Added protocol scan (-sP), which determines what IP protocols (TCP,
IGMP, GRE, UDP, ICMP, etc) are supported by a given host. This uses a
clever technique designed and implemented by Gerhard Rieger.
o Nmap now recognizes more than 700 operating system versions and network
devices (printers, webcams, routers, etc) thanks to thousands of
contributions from the user community! Many operating systems were even
recognized by Nmap prior to their official release. Nmap3 also recognizes
2148 port assignments, 451 SunRPC services, and 144 IP protocols.
o Added Idlescan (-sI), which bounces the scan off a "zombie" machine.
This can be used to bypass certain (poorly configured) firewalls and
packet filters. In addition, this is the stealthiest Nmap scan mode, as no
packets are sent to the target from your true IP address.
o The base Nmap package now builds and functions under Windows! It is
distributed in three forms: build-it-yourself source code, a simple
command-line package, or along with a nice GUI interface (NmapWin) and a
fancy installer. This is due to the hard work of Ryan Permeh (from eEye),
Andy Lutomirski, and Jens Vogt.
o Mac OS X is now supported, as well as the latest versions of Linux,
OpenBSD, Solaris, FreeBSD, and most other UNIX platforms. Nmap has also
been ported to several handheld devices -- see the Related Projects page
for further information.
o XML output (-oX) is now available for smooth interoperability between
Nmap and other tools.
o Added ICMP Timestamp and Netmask ping types (-PP and -PM). These
(especially timestamp) can be useful against some hosts that do not
respond to normal ping (-PI) packets. Nmap still allows TCP "ping" as
well.
o Nmap can now detect the uptime of many hosts when the OS Scan option
(-O) is used.
o Several new tests have been added to make OS detection more accurate
and provide more granular version information.
o Removed 128.210.*.* addresses from Nmap man page examples due to
complaints from Purdue security staff.
o The --data_length option was added, allowing for longer probe packets.
Among other uses, this defeats certain simplistic IDS signatures.
o You can now specify distinct port UDP and TCP port numbers in a single
scan command using a command like 'nmap -sSU -p
U:53,111,137,T:21-25,80,139,515,6000,8080 target.com'. See the man page
for more usage info.
o Added mysterious, undocumented --scanflags and --fuzzy options.
o Nmap now provides IPID as well as TCP ISN sequence predictability
reports if you use -v and -O.
o SYN scan is now the default scan type for privileged (root) users. This
is usually offers greater performance while reducing network traffic.
o Capitalized all references to God in error messages.
o Added List scan (-sL) which enumerates targets without scanning them.
o The Nmap "random IP" scanning mode is now smart enough to skip many
unallocated netblocks.
o Tons of more minor features, bugfixes, and portability enhancements.
Download information:
Nmap is available for download from <http://www.insecure.org/nmap>
http://www.insecure.org/nmap in source or compiled form. Nmap is Free
software distributed under the terms of the GNU General Public License
(GPL).
For the more paranoid (smart) members of the list, here are the md5
hashes:
2b648bc66f1cedbeed230ef56f6549a8 nmap-3.00.tgz
cfb513f4083d1de94d2361bd2451f59b nmap-3.00-1.i386.rpm
2d04682e972d954061e209865c8bf5af nmap-3.00-1.src.rpm
fc4a43dcd2e038acc5f15d534cf8c079 nmap-3.00-win32.zip
002adb9b0d2e19b007c7de8929cf5e97 nmap-frontend-3.00-1.i386.rpm
00707cde90a33d0c796489b1b92a74b3 nmapwin_1.3.0.exe
bf0632817d74d42c8b4fdfe473620c73 nmapwin_1.3.0_src.zip
These release notes should be signed with my PGP key, which is available
on public key servers or at <http://www.insecure.org/fyodor_gpgkey.txt>
http://www.insecure.org/fyodor_gpgkey.txt . The key fingerprint is: 97 2F
93 AB 9C B0 09 80 D9 51 40 6B B9 BC E1 7E.
ADDITIONAL INFORMATION
The information has been provided by <mailto:fyodor@insecure.org> Fyodor.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: support@securiteam.com: "[REVS] Hacking the Invisible Network (Insecurities in 802.11x)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
