Yes, the port list does contain this port. I just did a tcpdump on the host that was tested by the scanner, and the scanner pinged the host twice and then generated the 3-way handshake to the obscure port, and then reset the connection. There was no more traffic, and the scan was done. The scanner performed no tests on this system. Here is the report results:
0 results Empty reports can happen for the following reasons: * The target hosts where regarded dead. * The filter does not match any result. * A very small or non-verbose scan configuration was applied. <https://172.31.1.101:9392/omp?cmd=get_report_section&report_id=36b78077-58af-4d02-83a4-54b079556b69&report_section=hosts&result_hosts_only=0&token=923d481f-dca8-42c8-896d-5783c3e6122f> <https://172.31.1.101:9392/omp?cmd=get_report_section&report_id=36b78077-58af-4d02-83a4-54b079556b69&report_section=hosts&result_hosts_only=0&token=923d481f-dca8-42c8-896d-5783c3e6122f> However, this report contains 1 host. From: Openvas-discuss [mailto:[email protected]] On Behalf Of Sebastien Aucouturier Sent: Thursday, May 26, 2016 1:23 AM Cc: [email protected] Subject: Re: [Openvas-discuss] Having a problem scanning services on nonstandard ports When you create your target config ? do the port lists attach contains this uncommon ports ? Sebastien Aucouturier , Chief R&D Officer and Senior Technologist, <http://secludit.com/wp-content/uploads/2015/12/logo.png> Amazon WS Solutions Provider : <http://www.aws-partner-directory.com/PartnerDirectory/PartnerDetail?Name=SecludIT> http://www.aws-partner-directory.com/PartnerDirectory/PartnerDetail?Name=SecludIT Agence Toulouse GSM: 06.20.60.77.24 On Thu, May 26, 2016 at 1:21 AM, Allyn Baskerville <[email protected]> wrote: Having just setup OpenVAS, I test scanned the local machine, and a couple issues were noted. I tried to scan my server that is only listening on two obscure ports, and I setup a port list with only these two ports in it, bound it to a target (the IP of this host), and then I ran a “full and fast” scan. The scan finishes very fast – about 2 minutes, and the report comes back with no open ports, the severity shows N/A, the report shows “0 results”, but it does show “However, this report contains 1 host.” I’m not sure if nmap could be a problem, since running ./openvas-check-setup yield the following: WARNING: Your version of nmap is not fully supported: 6.47 SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE NVTs. I’ve seen various posts commenting on this, but I’ve not found a resolution. Can anyone throw some ideas at me as to what I might try? Thanks _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
