mirror of
https://github.com/nmap/nmap.git
synced 2025-12-16 04:39:03 +00:00
Oops, forgot to check this in after last chat w/David
This commit is contained in:
fyodor
136
docs/TODO
136
docs/TODO
@@ -1,17 +1,13 @@
|
|||||||
MTODO $Id: TODO 11866 2009-01-24 23:10:05Z fyodor $ -*-text-*-
|
TODO $Id: TODO 11866 2009-01-24 23:10:05Z fyodor $ -*-text-*-
|
||||||
|
|
||||||
|
o Go through all the SoC applicants and decide who we want to accept
|
||||||
|
and start communicating with them. [David,Fyodor]
|
||||||
|
|
||||||
|
o Decide which applicants we want, and who would be best for
|
||||||
|
mentoring them.
|
||||||
|
|
||||||
o Ask Coverity if they'll scan latest version of Nmap. [Fyodor]
|
o Ask Coverity if they'll scan latest version of Nmap. [Fyodor]
|
||||||
|
|
||||||
o SVN check out /nmap as an external in a directory named svn or src
|
|
||||||
or nmapsvn or something under nmap.org web tree. Then redirect the
|
|
||||||
individual nmap.org/data/ files, where needed, to the nmapsvn
|
|
||||||
instead. and update nmap-dev Makefile not to copy them to the
|
|
||||||
/data/ dir anymore. Then update the nsedoc system to generate proper
|
|
||||||
links to the new script/nselib locations. [Fyodor]
|
|
||||||
|
|
||||||
o Merge patrick/nse-lua-merge for easier-to-maintain and simpler
|
|
||||||
codebase once David and Patrick are happy with it. [David]
|
|
||||||
|
|
||||||
o [Zenmap] Should probably give some sort of widget indication that a
|
o [Zenmap] Should probably give some sort of widget indication that a
|
||||||
scan is running. Now that we can start multiple scans at once, the
|
scan is running. Now that we can start multiple scans at once, the
|
||||||
"scan" button goes back to being unpressed while the scan is
|
"scan" button goes back to being unpressed while the scan is
|
||||||
@@ -42,23 +38,10 @@ o Look into building RPMs with SSL support. Statically linking to
|
|||||||
OpenSSL on Linux for the RPMs didn't work for me last time I
|
OpenSSL on Linux for the RPMs didn't work for me last time I
|
||||||
tried. [Fyodor]
|
tried. [Fyodor]
|
||||||
|
|
||||||
o When you specify multiple comma-separated arguments to --script,
|
|
||||||
those arguments seem to get lost when the Nmap command is printed in
|
|
||||||
Nmap's output files. For example, I run the command:
|
|
||||||
nmap -oN - --script=discovery,intrusive scanme.nmap.org
|
|
||||||
The output includes:
|
|
||||||
# Nmap 4.85BETA4 scan initiated Thu Mar 26 15:40:05 2009 as: ./nmap
|
|
||||||
-oN - --script=discovery scanme.nmap.org
|
|
||||||
Note the missing ",intrusive" in the script argument. [David]
|
|
||||||
|
|
||||||
o [Ncat] When acting as an HTTP proxy, we should support GET mode as
|
o [Ncat] When acting as an HTTP proxy, we should support GET mode as
|
||||||
well as CONNECT so that it works as a non-SSL proxy in browsers such
|
well as CONNECT so that it works as a non-SSL proxy in browsers such
|
||||||
as firefox. [David]
|
as firefox. [David]
|
||||||
|
|
||||||
o [Ncat] Let people set up authenticated proxies using
|
|
||||||
--listen and --proxy-auth together (right now we don't support
|
|
||||||
that). [David]
|
|
||||||
|
|
||||||
o [Ncat] Maybe we should create an SSL cert with no passphrase during
|
o [Ncat] Maybe we should create an SSL cert with no passphrase during
|
||||||
Ncat compilation or install process so that if someone specifies
|
Ncat compilation or install process so that if someone specifies
|
||||||
Ncat -l and --ssl with no --ssl-cert and --ssl-key, we already have
|
Ncat -l and --ssl with no --ssl-cert and --ssl-key, we already have
|
||||||
@@ -99,23 +82,6 @@ o [Ncat] Consider supporting server certificate verification when used
|
|||||||
o We can probably get away with not doing revocation checking, as
|
o We can probably get away with not doing revocation checking, as
|
||||||
long as we document that we don't.
|
long as we document that we don't.
|
||||||
|
|
||||||
o NSEDoc script/module documentation pages should probably provide a
|
|
||||||
link to the script/module source code (except for C modules). The
|
|
||||||
link format should probably be of the form
|
|
||||||
http://nmap.org/data/scripts/[script].nse and
|
|
||||||
/data/nselib/[module].lua. NSEdoc can assume they already exist
|
|
||||||
there, as we'll probably put them there using the same system we use
|
|
||||||
to copy other stuff to the data dir.
|
|
||||||
|
|
||||||
o Prepare for Summer of Code
|
|
||||||
o Brainstorm for ideas
|
|
||||||
o Create new ideas page
|
|
||||||
o Apply to participate in program again
|
|
||||||
o Advertise for applicants
|
|
||||||
o Evaluate applicants
|
|
||||||
o Decide which applicants we want, and who would be best for
|
|
||||||
mentoring them.
|
|
||||||
|
|
||||||
o Device categorization improvements
|
o Device categorization improvements
|
||||||
o Examine Nmap's device categorization in nmap-os-deb and
|
o Examine Nmap's device categorization in nmap-os-deb and
|
||||||
nmap-service-probes. Decide if some small categories which have
|
nmap-service-probes. Decide if some small categories which have
|
||||||
@@ -134,7 +100,10 @@ o Device categorization improvements
|
|||||||
[Doug has done some initial work on this. For example, see
|
[Doug has done some initial work on this. For example, see
|
||||||
nmap/docs/device-types.txt]
|
nmap/docs/device-types.txt]
|
||||||
|
|
||||||
o Remove obsolete tests from nmap-os-db itself. [David]
|
o Document that U1.RID gives "G" as long as all the data bytes in the
|
||||||
|
echoed response data are "C" as expected. This G code is still
|
||||||
|
given even when the response is truncated, including if there are 0
|
||||||
|
bytes echoed. [David]
|
||||||
|
|
||||||
o Add version detection signiture for Ncat chat once we finalize the
|
o Add version detection signiture for Ncat chat once we finalize the
|
||||||
announce format.
|
announce format.
|
||||||
@@ -144,27 +113,6 @@ o Make a way to start a scan from the profile editor without creating
|
|||||||
implementation of
|
implementation of
|
||||||
http://www.bamsoftware.com/wiki/Nmap/ZenmapCommandLine. [David]
|
http://www.bamsoftware.com/wiki/Nmap/ZenmapCommandLine. [David]
|
||||||
|
|
||||||
o Ping scans always seem to say "0 [hosts] undergoing Ping Scan" when
|
|
||||||
you request stats, rather than the proper number. For an example,
|
|
||||||
try a command such as "nmap -iR 10000 -sP -n" and then press enter
|
|
||||||
during the scan. Here are some examples of the bad output: Stats:
|
|
||||||
25:34:33 elapsed; 991232 hosts completed (72530 up), 0 undergoing
|
|
||||||
Ping Scan Ping Scan Timing: About 53.69% done; ETC: 22:49 (0:00:09
|
|
||||||
remaining) Stats: 0:01:10 elapsed; 0 hosts completed (0 up), 0
|
|
||||||
undergoing Ping Scan Ping Scan Timing: About 24.03% done; ETC: 22:42
|
|
||||||
(0:03:41 remaining) Stats: 0:03:28 elapsed; 4096 hosts completed
|
|
||||||
(284 up), 0 undergoing Ping Scan Ping Scan Timing: About 3.06% done;
|
|
||||||
ETC: 22:44 (0:03:07 remaining) [David]
|
|
||||||
|
|
||||||
o Canonicalize the "host up" messages for port scan and ping scan so
|
|
||||||
that instead of things like "Host scanme.nmap.org (64.13.134.52)
|
|
||||||
appears to be up ... good." we standardize in both cases on
|
|
||||||
something like: "Host scanme.nmap.org (64.13.134.52) is up (.75s
|
|
||||||
latency)". Note the addition of the latency value, which is our
|
|
||||||
srtt value for the host. This will only show in ping scan and
|
|
||||||
verbose port scan because the line doesn't appear without verbose
|
|
||||||
mode. [David]
|
|
||||||
|
|
||||||
o Consider making the ping scan default be more comprehensive. Note
|
o Consider making the ping scan default be more comprehensive. Note
|
||||||
that I got 23% more Internet boxes found out of a 50K sample (see host
|
that I got 23% more Internet boxes found out of a 50K sample (see host
|
||||||
enumeration chapter of my book for details). Maybe I should
|
enumeration chapter of my book for details). Maybe I should
|
||||||
@@ -546,6 +494,68 @@ o random tip database
|
|||||||
|
|
||||||
DONE:
|
DONE:
|
||||||
|
|
||||||
|
o Canonicalize the "host up" messages for port scan and ping scan so
|
||||||
|
that instead of things like "Host scanme.nmap.org (64.13.134.52)
|
||||||
|
appears to be up ... good." we standardize in both cases on
|
||||||
|
something like: "Host scanme.nmap.org (64.13.134.52) is up (.75s
|
||||||
|
latency)". Note the addition of the latency value, which is our
|
||||||
|
srtt value for the host. This will only show in ping scan and
|
||||||
|
verbose port scan because the line doesn't appear without verbose
|
||||||
|
mode. [David]
|
||||||
|
|
||||||
|
o Ping scans always seem to say "0 [hosts] undergoing Ping Scan" when
|
||||||
|
you request stats, rather than the proper number. For an example,
|
||||||
|
try a command such as "nmap -iR 10000 -sP -n" and then press enter
|
||||||
|
during the scan. Here are some examples of the bad output: Stats:
|
||||||
|
25:34:33 elapsed; 991232 hosts completed (72530 up), 0 undergoing
|
||||||
|
Ping Scan Ping Scan Timing: About 53.69% done; ETC: 22:49 (0:00:09
|
||||||
|
remaining) Stats: 0:01:10 elapsed; 0 hosts completed (0 up), 0
|
||||||
|
undergoing Ping Scan Ping Scan Timing: About 24.03% done; ETC: 22:42
|
||||||
|
(0:03:41 remaining) Stats: 0:03:28 elapsed; 4096 hosts completed
|
||||||
|
(284 up), 0 undergoing Ping Scan Ping Scan Timing: About 3.06% done;
|
||||||
|
ETC: 22:44 (0:03:07 remaining) [David]
|
||||||
|
|
||||||
|
|
||||||
|
o Remove obsolete tests from nmap-os-db itself. [David]
|
||||||
|
|
||||||
|
o Prepare for Summer of Code
|
||||||
|
* Brainstorm for ideas
|
||||||
|
* Create new ideas page
|
||||||
|
* Apply to participate in program again
|
||||||
|
* Advertise for applicants
|
||||||
|
* Evaluate applicants
|
||||||
|
|
||||||
|
o NSEDoc script/module documentation pages should probably provide a
|
||||||
|
link to the script/module source code (except for C modules). The
|
||||||
|
link format should probably be of the form
|
||||||
|
http://nmap.org/data/scripts/[script].nse and
|
||||||
|
/data/nselib/[module].lua. NSEdoc can assume they already exist
|
||||||
|
there, as we'll probably put them there using the same system we use
|
||||||
|
to copy other stuff to the data dir.
|
||||||
|
|
||||||
|
o [Ncat] Let people set up authenticated proxies using
|
||||||
|
--listen and --proxy-auth together (right now we don't support
|
||||||
|
that). [David]
|
||||||
|
|
||||||
|
o When you specify multiple comma-separated arguments to --script,
|
||||||
|
those arguments seem to get lost when the Nmap command is printed in
|
||||||
|
Nmap's output files. For example, I run the command:
|
||||||
|
nmap -oN - --script=discovery,intrusive scanme.nmap.org
|
||||||
|
The output includes:
|
||||||
|
# Nmap 4.85BETA4 scan initiated Thu Mar 26 15:40:05 2009 as: ./nmap
|
||||||
|
-oN - --script=discovery scanme.nmap.org
|
||||||
|
Note the missing ",intrusive" in the script argument. [David]
|
||||||
|
|
||||||
|
o Merge patrick/nse-lua-merge for easier-to-maintain and simpler
|
||||||
|
codebase once David and Patrick are happy with it. [David]
|
||||||
|
|
||||||
|
o SVN check out /nmap as an external in a directory named svn or src
|
||||||
|
or nmapsvn or something under nmap.org web tree. Then redirect the
|
||||||
|
individual nmap.org/data/ files, where needed, to the nmapsvn
|
||||||
|
instead. and update nmap-dev Makefile not to copy them to the
|
||||||
|
/data/ dir anymore. Then update the nsedoc system to generate proper
|
||||||
|
links to the new script/nselib locations. [Fyodor]
|
||||||
|
|
||||||
o Improvements to presentation of version detection
|
o Improvements to presentation of version detection
|
||||||
information. [Brandon]
|
information. [Brandon]
|
||||||
o Allow longer strings. Right now it can be 128 chars for the
|
o Allow longer strings. Right now it can be 128 chars for the
|
||||||
|
|||||||
Reference in New Issue
Block a user