Results 1 to 16 of 16
  1. #1
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324

    Lightbulb how to install Nmap tool in our server ?

    Hello ... i'v see a subject for Nmap tool and how to scan servers for any Vulnerability and ports ...

    so please some Expert in this to help me in install it here ...

    Thanks alot ..
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  2. #2
    Join Date
    Oct 2004
    Location
    Kerala, India
    Posts
    4,771
    If you have unix server and have yum installed, use the following command.

    yum install nmap
    David | www.cliffsupport.com
    Affordable Server Management Solutions sales AT cliffsupport DOT com
    CliffWebManager | Access WHM from iPhone and Android

  3. #3
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    thanks bro .. everything okay now

    PHP Code:
    [root@BOX public_html]# yum install nmap
    Setting up Install Process
    Setting up repositories
    update                    100
    % |=========================|  951 B    00:00
    base                      100
    % |=========================| 1.1 kB    00:00
    addons                    100
    % |=========================|  951 B    00:00
    extras                    100
    % |=========================| 1.1 kB    00:00
    Reading repository metadata in from local files
    Excluding Packages in 
    global exclude list
    Finished
    Parsing package install arguments
    Resolving Dependencies
    --> Populating transaction set with selected packagesPlease wait.
    ---> 
    Downloading header for nmap to pack into transaction set.
    nmap-3.70-1.i386.rpm      100% |=========================| 8.3 kB    00:00
    ---> Package nmap.i386 2:3.70-1 set to be updated
    --> Running transaction check

    Dependencies Resolved

    =============================================================================
     
    Package                 Arch       Version          Repository        Size
    =============================================================================
    Installing:
     
    nmap                    i386       2:3.70-1         base              486 k

    Transaction Summary
    =============================================================================
    Install      1 Package(s)
    Update       0 Package(s)
    Remove       0 Package(s)
    Total download size486 k
    Is this ok 
    [y/N]: y
    Downloading Packages
    :
    (
    1/1): nmap-3.70-1.i386.r 100% |=========================| 486 kB    00:00
    Running Transaction Test
    Finished Transaction Test
    Transaction Test Succeeded
    Running Transaction
      Installing
    nmap                         ######################### [1/1]

    Installednmap.i386 2:3.70-1
    Complete
    !
    [
    root@BOX public_html]
    now how can i scan my site ??

    and is there any future tool for scan ? or thats it ?
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  4. #4
    Join Date
    Oct 2004
    Location
    Kerala, India
    Posts
    4,771
    Use the following command to run nmap from your server.

    nmap localhost

    This shows the open ports on your server.
    David | www.cliffsupport.com
    Affordable Server Management Solutions sales AT cliffsupport DOT com
    CliffWebManager | Access WHM from iPhone and Android

  5. #5
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    PHP Code:
    [root@BOX ~]# nmap localhost

    Starting nmap 3.70 http://www.insecure.org/nmap/ ) at 2007-11-08 16:03 MSK
    Interesting ports on localhost (127.0.0.1):
    (
    The 1646 ports scanned but not shown below are in stateclosed)
    PORT     STATE SERVICE
    21
    /tcp   open  ftp
    22
    /tcp   open  ssh
    25
    /tcp   open  smtp
    53
    /tcp   open  domain
    80
    /tcp   open  http
    110
    /tcp  open  pop3
    143
    /tcp  open  imap
    443
    /tcp  open  https
    465
    /tcp  open  smtps
    783
    /tcp  open  hp-alarm-mgr
    953
    /tcp  open  rndc
    993
    /tcp  open  imaps
    995
    /tcp  open  pop3s
    3306
    /tcp open  mysql

    Nmap run completed 
    -- 1 IP address (1 host upscanned in 0.793 seconds
    [root@BOX ~]
    how can i let just the important ports ? and close the others ?

    and whats the important ports ?

    thanks for advice bro ..
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  6. #6
    Join Date
    Apr 2005
    Posts
    1,767
    You might want to scan it from a different machine, because it's going to let that local machine see everything. On another machine as root, try this command:

    nmap -sS -P0 -sV www.yourwebsite.com

  7. #7
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    its take along time ... i dont know why ??

    then its says
    PHP Code:
    [root@BOX ~]# nmap -sS -P0 -sV www.*************.com

    Starting nmap 3.70 http://www.insecure.org/nmap/ ) at 2007-11-09 01:34 MSK
    All 1660 scanned ports on 112.9.233.72.static.reverse.ltdomains.com (72.233.9.112arefiltered

    Nmap run completed 
    -- 1 IP address (1 host upscanned in 333.771 seconds
    [root@BOX ~]
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  8. #8
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    is that okay ???

    PHP Code:
    [root@BOX ~]# nmap -sS -P0 -sV localhost

    Starting nmap 3.70 http://www.insecure.org/nmap/ ) at 2007-11-09 01:54 MSK
    WarningServicescan failed to fill info_template (subjectlen3230). Too longMatch string was line 1110v/Apache httpd/$1/$2
    Warning
    Servicescan failed to fill info_template (subjectlen3230). Too longMatch string was line 1110v/Apache httpd/$1/$2
    Interesting ports on localhost 
    (127.0.0.1):
    (
    The 1646 ports scanned but not shown below are in stateclosed)
    PORT     STATE SERVICE       VERSION
    21
    /tcp   open  ftp           PureFTPd
    22
    /tcp   open  ssh           OpenSSH 3.9p1 (protocol 1.99)
    25/tcp   open  smtp          Exim smtpd 4.68
    53
    /tcp   open  domain
    80
    /tcp   open  http          Apache httpd 1.3.39
    110
    /tcp  open  pop3          Courier pop3d
    143
    /tcp  open  imap?
    443/tcp  open  http          Apache httpd 1.3.39
    465
    /tcp  open  ssl/smtp      Exim smtpd 4.68
    783
    /tcp  open  hp-alarm-mgr?
    953/tcp  open  rndc?
    993/tcp  open  ssl/unknown
    995
    /tcp  open  ssl/pop3      Courier pop3d
    3306
    /tcp open  mysql         MySQL 4.1.22-standard
    3 services unrecognized despite returning data
    . If you know the service/versionplease submit the following fingerprints at http://www.insecure.org/cgi-bin/servicefp-submit.cgi :
    ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
    SF-Port143-TCP:V=3.70%D=11/9%Time=473393B9%P=i686-redhat-linux-gnu%r(NULL,
    SF:F2,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAM
    SF:ESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x
    SF:20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20ready\.\x2
    SF:0Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20See\x20
    SF:COPYING\x20for\x20distribution\x20information\.\r\n"
    )%r(GetRequest,154,
    SF:"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAMESP
    SF:ACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x20I
    SF:DLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20ready\.\x20Co
    SF:pyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20See\x20COP
    SF:YING\x20for\x20distribution\x20information\.\r\nGET\x20NO\x20Error\x20i
    SF:n\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20NO\x20Error
    SF:\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n"
    )%r(Generic
    SF
    :Lines,152,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN
    SF:\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20
    SF:QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMAP\x20rea
    SF:dy\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x20
    SF:See\x20COPYING\x20for\x20distribution\x20information\.\r\n\*\x20NO\x20E
    SF:rror\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20NO
    SF:\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n"
    )%
    SF:r(HTTPOptions,158,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20
    SF:CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20
    SF:SORT\x20QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x20Courier-IMA
    SF:P\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.
    SF:\x20\x20See\x20COPYING\x20for\x20distribution\x20information\.\r\nOPTIO
    SF:NS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\
    SF:.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20se
    SF:rver\.\r\n"
    )%r(RTSPRequest,158,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x
    SF:20UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=R
    SF:EFERENCES\x20SORT\x20QUOTA\x20IDLE\x20ACL\x20ACL2=UNION\x20STARTTLS\]\x
    SF:20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precis
    SF:ion,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribution\x20informati
    SF:on\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20
    SF:by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20receive
    SF:d\x20by\x20server\.\r\n"
    );
    ==============
    NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
    SF-Port783-TCP:V=3.70%D=11/9%Time=473393B9%P=i686-redhat-linux-gnu%r(GetRe
    SF
    :quest,2E,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20GET\x20/\x20HTT
    SF:P/1\.0\r\n"
    )%r(GenericLines,20,"SPAMD/1\.0\x2076\x20Bad\x20header\x20li
    SF:ne:\x20\r\n"
    )%r(HTTPOptions,32,"SPAMD/1\.0\x2076\x20Bad\x20header\x20li
    SF:ne:\x20OPTIONS\x20/\x20HTTP/1\.0\r\n"
    )%r(RTSPRequest,32,"SPAMD/1\.0\x20
    SF:76\x20Bad\x20header\x20line:\x20OPTIONS\x20/\x20RTSP/1\.0\r\n"
    )%r(Help,
    SF:24,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20HELP\r\n")%r(SSLSessi
    SF
    :onReq,53,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20\x16\x03\0\0S\x
    SF:01\0\0O\x03\0\?G\xd7\xf7\xba,\xee\xea\xb2`~\xf3\0\xfd\x82{\xb9\xd5\x96\
    SF:xc8w\x9b\xe6\xc4\xdb<=\xdbo\xef\x10n\0\0\(\0\x16\0\x13\0\r\n"
    )%r(LPDStr
    SF
    :ing,28,"SPAMD/1\.0\x2076\x20Bad\x20header\x20line:\x20\x01default\r\n");
    ==============
    NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)==============
    SF-Port993-TCP:V=3.70%T=SSL%D=11/9%Time=473393C8%P=i686-redhat-linux-gnu%r
    SF
    :(NULL,F4,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\
    SF:x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20Q
    SF:UOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-IMAP\x20re
    SF:ady\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x2
    SF:0See\x20COPYING\x20for\x20distribution\x20information\.\r\n"
    )%r(Generic
    SF
    :Lines,154,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x20CHILDREN
    SF:\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x20SORT\x20
    SF:QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-IMAP\x20r
    SF:eady\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20Inc\.\x20\x
    SF:20See\x20COPYING\x20for\x20distribution\x20information\.\r\n\*\x20NO\x2
    SF:0Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n\*\x20
    SF:NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.\r\n"
    SF:)%r(GetRequest,156,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x20UIDPLUS\x2
    SF:0CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=REFERENCES\x2
    SF:0SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\x20Courier-
    SF:IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Precision,\x20In
    SF:c\.\x20\x20See\x20COPYING\x20for\x20distribution\x20information\.\r\nGE
    SF:T\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20server\.
    SF:\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x20by\x20ser
    SF:ver\.\r\n"
    )%r(HTTPOptions,15A,"\*\x20OK\x20\[CAPABILITY\x20IMAP4rev1\x2
    SF:0UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJECT\x20THREAD=RE
    SF:FERENCES\x20SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x20ACL2=UNION\]\
    SF:x20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20Double\x20Preci
    SF:sion,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribution\x20informat
    SF:ion\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command\x20received\x2
    SF:0by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20command\x20receiv
    SF:ed\x20by\x20server\.\r\n"
    )%r(RTSPRequest,15A,"\*\x20OK\x20\[CAPABILITY\
    SF:x20IMAP4rev1\x20UIDPLUS\x20CHILDREN\x20NAMESPACE\x20THREAD=ORDEREDSUBJE
    SF:CT\x20THREAD=REFERENCES\x20SORT\x20QUOTA\x20IDLE\x20AUTH=PLAIN\x20ACL\x
    SF:20ACL2=UNION\]\x20Courier-IMAP\x20ready\.\x20Copyright\x201998-2005\x20
    SF:Double\x20Precision,\x20Inc\.\x20\x20See\x20COPYING\x20for\x20distribut
    SF:ion\x20information\.\r\nOPTIONS\x20NO\x20Error\x20in\x20IMAP\x20command
    SF:\x20received\x20by\x20server\.\r\n\*\x20NO\x20Error\x20in\x20IMAP\x20co
    SF:mmand\x20received\x20by\x20server\.\r\n"
    );

    Nmap run completed -- 1 IP address (1 host upscanned in 117.121 seconds
    [root@BOX ~]
    i dont know there is alotof unknown things ???
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  9. #9
    Join Date
    Apr 2007
    Location
    Malaysia
    Posts
    44
    Looks pretty much normal to me.
    Professional System Administration and custom PHP script development .


  10. #10
    Join Date
    Feb 2005
    Location
    I am air u breathe
    Posts
    230
    Hi,

    If it is the slow timing of the first result that you are concerned about, then you should be trying the option --scan_delay to either increase or decrease the timings. It is effective.

    Al
    It is reliability that counts...

  11. #11
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    this command ?


    --scan_delay
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  12. #12
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    is there any future tool or command or paper for useing nmap command ??
    for scanning and secure our server ??
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  13. #13
    Join Date
    Apr 2003
    Location
    San Jose, CA.
    Posts
    1,624
    I don't need to sound rude, but seeing as you don't seem to know how to search for standard packages and install them, or what their output means: You will probably want to hire a professional company to run a security audit for you.

  14. #14
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    i dont need a professional company to run a security audit for me ...

    i need just simple tools for nmap scanner ??
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

  15. #15
    Join Date
    Oct 2004
    Location
    Kerala, India
    Posts
    4,771
    Quote Originally Posted by E-Learning View Post
    is there any future tool or command or paper for useing nmap command ??
    for scanning and secure our server ??
    This may help you.
    http://insecure.org/nmap/man/
    David | www.cliffsupport.com
    Affordable Server Management Solutions sales AT cliffsupport DOT com
    CliffWebManager | Access WHM from iPhone and Android

  16. #16
    Join Date
    Jun 2007
    Location
    Jordan
    Posts
    324
    Thanks alot
    Learn whatever you read ...
    Some day you well tech ...
    E-Learning .

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •