Nmap Gets Version Detection
Anonymous Coward writes "Up until now, everyone's favorite port scanner, nmap has had decent OS detection (through TCP fingerprinting) and service identification based on the open port, but the latest version, 3.45 released today, has version detection for each service! This means not only can nmap tell you that httpd is running on port 80, but that it is `apache httpd version 2.0.39`! While this is a little bit worrisome because of what malicious purposes people might use nmap's version detection for, this should make the jobs of admins everywhere easier and keep us all more on our toes when it comes to security. Fyodor has also published a paper on how the version detection works."
hehe my first first post
Love Always,
News For Turds
While nmap used to be a great white hat tool, I now wonder what fyodor's intentions are. Whitehats around the world are now going to be getting a 'bad name' because this tool is now 90% blackhat. I wonder what fyodor has up his sleeve.
I just heard some sad news on talk radio - former Internet Architecture Board president Christian Huitema was found dead in his Morristown, NJ home this morning. There weren't any more details yet. I'm sure we'll all miss him, even if you weren't a fan of his work and activism there's no denying his contribution to Internet culture. Truly an French icon.
"this should make the jobs of admins everywhere easier"
No, this will make the lives of scriptkiddies everywhere easier. When you support 10,000 servers and 30,000 desktops for UNIX alone, things like this are a nightmare. I used to remember when being a sysadmin meant more than rolling out patches every week or so.
...your machine scans nmap.