when you include spoofed addresses you should include a real ip address that
you want a reply to come back to. man nmap for more information about using
the decoy option.
Thomas Baker
Senior Network Technician
Staples, INC.
(508) 253-3507
[EMAIL PROTECTED]
-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Saturday, September 15, 2001 10:24 AM
To: [EMAIL PROTECTED]
Subject: nmap-spoofing-question
Hi all.
I hope anybody can help me with this little question. How is it possible to
get
the scanning-results with nmap, when I spoof the address? I thought, that if
a
computer gets a syn-packet or whatever, it sends its syn-ack or whatever
back to
the ip which sent the syn or any other kind of packets.
I've tried to figure it out with a sniffer, because I thought maybe it sends
out packets from many random ips including the sender's and the spoofed, but
I
think that was wrong...
Thanks for any kind of answer.
Chris
