Sorry for the spam! I figured it out. If safe checks is on, the script won't run a syn scan:
scan_tcp = 1; if (safe) argv[i++] = "-sT"; Thanks, Pete Duffin -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duffin, Pete (BL60:9622) Sent: Tuesday, June 05, 2007 12:04 PM To: [email protected] Subject: RE: Portscan issue on 2.2.9 To add to this, I have tried from the command line using a custom conf file. I have also tried it via the gui, and manually checking the radio box next to "SYN" under nmap wrapper settings. I have also tried this on three different scanners, one I installed this morning. Thanks, Pete Duffin -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Duffin, Pete (BL60:9622) Sent: Tuesday, June 05, 2007 11:25 AM To: George A. Theall; [email protected] Subject: Portscan issue on 2.2.9 Hi, I am having a problem specifying which type of ports scan is being run. In my config file, I have: Nmap (NASL wrapper)[radio]:TCP scanning technique : = SYN scan And do not have another line like this, it's the only one. When I run my scan, I do ps -ef to see what command nessus is passing to nmap, and I see: nmap -n -P0 -oG /usr/local/var/nessus/tmp/nmap-10.10.10.10-83168732 -sT -p 1-65535 To me, this is nmap doing a connect scan, which is causing an applicationt o crash. If I nmap on it manually and do a SYN scan, the application does not crash, which is the reason I'd like nessus to use NMAP doing a SYN scan. Anybody know why Nessus isn't passing nmap the -sS option instead of the -sT option? Thanks, Pete Duffin _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
