On Wed, Sep 14, 2005 at 10:18:58AM +0200, I am WE4SEL wrote: > >Does nmap without the '-f' switch still detect the port as open? It's > >probably a silly question, but you never know... > > Yes without the -f option nmap finds the open port and it does find it > with -F option, too.
-F and -f are completely unrelated options in Nmap. The meaning of -f depends on Nmap version. In very old releases (before 3.5x), it fragments at MTU=16 (without headers), in some old releases (3.7x - 3.80) it does not do anything and since 3.81 it fragments at MTU=8 (and -ff fragments at MTU=16). Anyway, it is not uncommon behaviour to simply just drop such fragmented packets (not arguing if this is good or bad...). Martin Mačok ICT Security Consultant _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
