On Thu, Oct 03, 2002 at 11:27:14AM -0400, Protima Chhabra wrote:
> Nmap allows both a SYN scan and a CONNECT scan. What is the difference in
> the information gathered between the two?
The connect() scan uses the operating system to do its job and
establishes a full connection to the remote service. This means that you
can have great confidence in its output, but you risk to crash the
remote services that don't like to be woke up for nothing.
A SYN scan does not perform the full three way handshake and therefore
the remote services don't know they are being scanned.
I recommand the use of the latter if you don't want to break anything.
-- Renaud
-
[EMAIL PROTECTED]: general discussions about Nessus.
* To unsubscribe, send a mail to [EMAIL PROTECTED] with
"unsubscribe nessus" in the body.
