Results 1 to 16 of 16
-
11-07-2007, 11:32 PM #1Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
how to install Nmap tool in our server ?
Hello ... i'v see a subject for Nmap tool and how to scan servers for any Vulnerability and ports ...
so please some Expert in this to help me in install it here ...
Thanks alot ..Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-08-2007, 01:03 AM #2Web Hosting Master
- Join Date
- Oct 2004
- Location
- Kerala, India
- Posts
- 4,771
If you have unix server and have yum installed, use the following command.
yum install nmapDavid | www.cliffsupport.com
Affordable Server Management Solutions sales AT cliffsupport DOT com
CliffWebManager | Access WHM from iPhone and Android
-
11-08-2007, 02:30 AM #3Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
thanks bro .. everything okay now
PHP Code:[root@BOX public_html]# yum install nmap
Setting up Install Process
Setting up repositories
update 100% |=========================| 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
extras 100% |=========================| 1.1 kB 00:00
Reading repository metadata in from local files
Excluding Packages in global exclude list
Finished
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for nmap to pack into transaction set.
nmap-3.70-1.i386.rpm 100% |=========================| 8.3 kB 00:00
---> Package nmap.i386 2:3.70-1 set to be updated
--> Running transaction check
Dependencies Resolved
=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
nmap i386 2:3.70-1 base 486 k
Transaction Summary
=============================================================================
Install 1 Package(s)
Update 0 Package(s)
Remove 0 Package(s)
Total download size: 486 k
Is this ok [y/N]: y
Downloading Packages:
(1/1): nmap-3.70-1.i386.r 100% |=========================| 486 kB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: nmap ######################### [1/1]
Installed: nmap.i386 2:3.70-1
Complete!
[root@BOX public_html]#
and is there any future tool for scan ? or thats it ?Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-08-2007, 03:40 AM #4Web Hosting Master
- Join Date
- Oct 2004
- Location
- Kerala, India
- Posts
- 4,771
Use the following command to run nmap from your server.
nmap localhost
This shows the open ports on your server.David | www.cliffsupport.com
Affordable Server Management Solutions sales AT cliffsupport DOT com
CliffWebManager | Access WHM from iPhone and Android
-
11-08-2007, 09:05 AM #5Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
PHP Code:[root@BOX ~]# nmap localhost
Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2007-11-08 16:03 MSK
Interesting ports on localhost (127.0.0.1):
(The 1646 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
25/tcp open smtp
53/tcp open domain
80/tcp open http
110/tcp open pop3
143/tcp open imap
443/tcp open https
465/tcp open smtps
783/tcp open hp-alarm-mgr
953/tcp open rndc
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysql
Nmap run completed -- 1 IP address (1 host up) scanned in 0.793 seconds
[root@BOX ~]#
and whats the important ports ?
thanks for advice bro ..Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-08-2007, 09:46 AM #6Web Hosting Master
- Join Date
- Apr 2005
- Posts
- 1,767
You might want to scan it from a different machine, because it's going to let that local machine see everything. On another machine as root, try this command:
nmap -sS -P0 -sV www.yourwebsite.com
-
11-08-2007, 06:38 PM #7Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
its take along time ... i dont know why ??
then its says
PHP Code:[root@BOX ~]# nmap -sS -P0 -sV www.*************.com
Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2007-11-09 01:34 MSK
All 1660 scanned ports on 112.9.233.72.static.reverse.ltdomains.com (72.233.9.112) are: filtered
Nmap run completed -- 1 IP address (1 host up) scanned in 333.771 seconds
[root@BOX ~]#
Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-08-2007, 07:56 PM #8Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
is that okay ???
PHP Code:[root@BOX ~]# nmap -sS -P0 -sV localhost
Starting nmap 3.70 ( http://www.insecure.org/nmap/ ) at 2007-11-09 01:54 MSK
Warning: Servicescan failed to fill info_template (subjectlen: 3230). Too long? Match string was line 1110: v/Apache httpd/$1/$2
Warning: Servicescan failed to fill info_template (subjectlen: 3230). Too long? Match string was line 1110: v/Apache httpd/$1/$2
Interesting ports on localhost (127.0.0.1):
(The 1646 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE VERSION
21/tcp open ftp PureFTPd
22/tcp open ssh OpenSSH 3.9p1 (protocol 1.99)
25/tcp open smtp Exim smtpd 4.68
53/tcp open domain
80/tcp open http Apache httpd 1.3.39
110/tcp open pop3 Courier pop3d
143/tcp open imap?
443/tcp open http Apache httpd 1.3.39
465/tcp open ssl/smtp Exim smtpd 4.68
783/tcp open hp-alarm-mgr?
953/tcp open rndc?
993/tcp open ssl/unknown
995/tcp open ssl/pop3 Courier pop3d
3306/tcp open mysql MySQL 4.1.22-standard
3 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port143-TCP:V=3.70%D=11/9%Time=473393B9%P=i686-redhat-linux-gnu%r(NULL,
SF:F2,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAM
SF:ESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x
SF:20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20ready\.\x2
SF:0Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20See\x20
SF:COPYING\x20for\x20distribution\x20information\.\r\n")%r(GetRequest,154,
SF:"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAMESP
SF:ACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x20I
SF:DLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20ready\.\x20Co
SF:pyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20See\x20COP
SF:YING\x20for\x20distribution\x20information\.\r\nGET\x20NO\x20Error\x20i
SF:n\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20NO\x20Error
SF:\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n")%r(Generic
SF:Lines,152,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN
SF:\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20
SF:QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20rea
SF:dy\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20
SF:See\x20COPYING\x20for\x20distribution\x20information\.\r\n\*\x20NO\x20E
SF:rror\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20NO
SF:\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n")%
SF:r(HTTPOptions,158,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20
SF:CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20
SF:SORT\x20QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMA
SF:P\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.
SF:\x20\x20See\x20COPYING\x20for\x20distribution\x20information\.\r\nOPTIO
SF:NS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\
SF:.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20se
SF:rver\.\r\n")%r(RTSPRequest,158,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x
SF:20UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=R
SF:EFERENCES\x20SORT\x20QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x
SF:20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precis
SF:ion,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribution\x20informati
SF:on\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20
SF:by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20receive
SF:d\x20by\x20server\.\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port783-TCP:V=3.70%D=11/9%Time=473393B9%P=i686-redhat-linux-gnu%r(GetRe
SF:quest,2E,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20GET\x20/\x20HTT
SF:P/1\.0\r\n")%r(GenericLines,20,"SPAMD/1\.0\x2076\x20Bad\x20header\x20li
SF:ne:\x20\r\n")%r(HTTPOptions,32,"SPAMD/1\.0\x2076\x20Bad\x20header\x20li
SF:ne:\x20OPTIONS\x20/\x20HTTP/1\.0\r\n")%r(RTSPRequest,32,"SPAMD/1\.0\x20
SF:76\x20Bad\x20header\x20line:\x20OPTIONS\x20/\x20RTSP/1\.0\r\n")%r(Help,
SF:24,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20HELP\r\n")%r(SSLSessi
SF:onReq,53,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20\x16\x03\0\0S\x
SF:01\0\0O\x03\0\?G\xd7\xf7\xba,\xee\xea\xb2`~\xf3\0\xfd\x82{\xb9\xd5\x96\
SF:xc8w\x9b\xe6\xc4\xdb<=\xdbo\xef\x10n\0\0\(\0\x16\0\x13\0\r\n")%r(LPDStr
SF:ing,28,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20\x01default\r\n");
==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
SF-Port993-TCP:V=3.70%T=SSL%D=11/9%Time=473393C8%P=i686-redhat-linux-gnu%r
SF:(NULL,F4,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\
SF:x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20Q
SF:UOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-IMAP\x20re
SF:ady\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x2
SF:0See\x20COPYING\x20for\x20distribution\x20information\.\r\n")%r(Generic
SF:Lines,154,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN
SF:\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20
SF:QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-IMAP\x20r
SF:eady\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x
SF:20See\x20COPYING\x20for\x20distribution\x20information\.\r\n\*\x20NO\x2
SF:0Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20
SF:NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n"
SF:)%r(GetRequest,156,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x2
SF:0CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x2
SF:0SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-
SF:IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20In
SF:c\.\x20\x20See\x20COPYING\x20for\x20distribution\x20information\.\r\nGE
SF:T\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.
SF:\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20ser
SF:ver\.\r\n")%r(HTTPOptions,15A,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x2
SF:0UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=RE
SF:FERENCES\x20SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\
SF:x20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Preci
SF:sion,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribution\x20informat
SF:ion\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x2
SF:0by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20receiv
SF:ed\x20by\x20server\.\r\n")%r(RTSPRequest,15A,"\*\x20OK\x20\[CAPABILITY\
SF:x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJE
SF:CT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x
SF:20ACL2=UNION\]\x20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20
SF:Double\x20Precision,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribut
SF:ion\x20information\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command
SF:\x20received\x20by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20co
SF:mmand\x20received\x20by\x20server\.\r\n");
Nmap run completed -- 1 IP address (1 host up) scanned in 117.121 seconds
[root@BOX ~]#
Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-09-2007, 01:59 AM #9Junior Guru Wannabe
- Join Date
- Apr 2007
- Location
- Malaysia
- Posts
- 44
-
11-09-2007, 02:58 AM #10Junior Guru
- Join Date
- Feb 2005
- Location
- I am air u breathe
- Posts
- 230
Hi,
If it is the slow timing of the first result that you are concerned about, then you should be trying the option --scan_delay to either increase or decrease the timings. It is effective.
Al
It is reliability that counts...
-
11-09-2007, 04:08 AM #11Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
this command ?
--scan_delayLearn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-09-2007, 09:46 AM #12Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
is there any future tool or command or paper for useing nmap command ??
for scanning and secure our server ??Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-09-2007, 10:29 AM #13Web Hosting Master
- Join Date
- Apr 2003
- Location
- San Jose, CA.
- Posts
- 1,624
I don't need to sound rude, but seeing as you don't seem to know how to search for standard packages and install them, or what their output means: You will probably want to hire a professional company to run a security audit for you.
-
11-09-2007, 05:25 PM #14Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
i dont need a professional company to run a security audit for me ...
i need just simple tools for nmap scanner ??Learn whatever you read ...
Some day you well tech ...
E-Learning .
-
11-09-2007, 05:57 PM #15Web Hosting Master
- Join Date
- Oct 2004
- Location
- Kerala, India
- Posts
- 4,771
This may help you.
http://insecure.org/nmap/man/David | www.cliffsupport.com
Affordable Server Management Solutions sales AT cliffsupport DOT com
CliffWebManager | Access WHM from iPhone and Android
-
11-09-2007, 06:37 PM #16Web Hosting Guru
- Join Date
- Jun 2007
- Location
- Jordan
- Posts
- 324
Thanks alot
Learn whatever you read ...
Some day you well tech ...
E-Learning .