NMAP QUESTION

• Previous message: Unruh: "Re: info req regarding a paper"
• Next in thread: Andrew Schulman: "Re: NMAP QUESTION"
• Reply: Andrew Schulman: "Re: NMAP QUESTION"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 22 Jun 2005 10:26:44 -0400

        hello newbie here to linux.

I have two questions:

1. I ran nmap localhost on my linux system (Fedora Core2) and got the
following:

[root@dev root]$ nmap dev

Starting nmap 3.50 ( http://www.insecure.org/nmap/ ) at 2005-06-22
10:18 EDT
Interesting ports on dev (127.0.0.1):
(The 1650 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp open ftp
25/tcp open smtp
80/tcp open http
111/tcp open rpcbind
873/tcp open rsync
5801/tcp open vnc-http-1
5901/tcp open vnc-1
6001/tcp open X11:1
8081/tcp open blackice-icecap
32770/tcp open sometimes-rpc3

Nmap run completed -- 1 IP address (1 host up) scanned in 1.181
seconds
[root@dev root]$

What is blackice-icecap?? Is this the default firewall with Fedora?
IPTABLES/Netfilter? Where can I find this on my system?

2. After running an nmap scan against my system I get the following
results:

TCP Sequence Prediction: Class=random positive increments
                         Difficulty=3453555 (Good luck!)
TCP ISN Seq. Numbers: A27DF379 A2CE22B0 A24361C6 A1E5AC5A A26CCB76
IPID Sequence Generation: All zeros

The IPID Sequence is all zeros. From my initial research I've done on
google I've read that this is a problem with my linux kernel. Is this
correct? Updating my kernel is fix this. Is this a problem? What
are the consequences of this being all zeros?

Thanks for any links and advice.

• Previous message: Unruh: "Re: info req regarding a paper"
• Next in thread: Andrew Schulman: "Re: NMAP QUESTION"
• Reply: Andrew Schulman: "Re: NMAP QUESTION"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]