From 4467a320599cce3ceb0944fd4ded973674fc86a9 Mon Sep 17 00:00:00 2001 From: fyodor Date: Tue, 6 Oct 2009 21:46:55 +0000 Subject: [PATCH] Reordered some items for prioritization. Also, one of the items added during this meeting was finished by David before the meeting was even over :) --- docs/TODO | 75 ++++++++++++++++++++++++++++--------------------------- 1 file changed, 38 insertions(+), 37 deletions(-) diff --git a/docs/TODO b/docs/TODO index d34701b2e..97d1d271e 100644 --- a/docs/TODO +++ b/docs/TODO @@ -1,16 +1,5 @@ TODO $Id: TODO 11866 2009-01-24 23:10:05Z fyodor $ -*-text-*- -o Improve Nmap output to show the forward DNS name when specified on - command line as well as rDNS where appropriate. We're also going to - reorganize output to enable some other improvements as well. See - the proposal at http://seclists.org/nmap-dev/2009/q3/814, and that - whole thread which starts at - http://seclists.org/nmap-dev/2009/q3/805 [David]. - -o [Seclists] There is currently some extra vertical space after the -first post of a thread in the thread index (example: -http://seclists.org/nmap-dev/2009/q4/index.html). - o Fix a bug in which Nmap can wrongly associate responses to SYN and ACK host discovery probes. [David] For example: @@ -34,18 +23,43 @@ o Fix a bug in which Nmap can wrongly associate responses to SYN and whether we can still reproduce that and, if so, what is going on before "fixing" this issue. +o [Ncat] Fix --max-conns on Windows so that it only counts concurrent + connections and not long-dead ones. See this thread + (http://seclists.org/nmap-dev/2009/q3/1017.html) and particularly this + message (http://seclists.org/nmap-dev/2009/q3/1032.html) for + details. Venkat has a patch for David to review and potentially merge. + o [Ncat] Fix 100% CPU usage with ncat -l --send-only. See this thread: http://seclists.org/nmap-dev/2009/q2/797 and continues further at http://seclists.org/nmap-dev/2009/q3/99. This message is key: http://seclists.org/nmap-dev/2009/q3/308 [David] +o Improve Nmap output to show the forward DNS name when specified on + command line as well as rDNS where appropriate. We're also going to + reorganize output to enable some other improvements as well. See + the proposal at http://seclists.org/nmap-dev/2009/q3/814, and that + whole thread which starts at + http://seclists.org/nmap-dev/2009/q3/805 [David]. + +o Potential OS X 10.6 problems. There are two issues reported by the + same user which may be related: + http://seclists.org/nmap-dev/2009/q3/0936.html, + http://seclists.org/nmap-dev/2009/q3/0996.html. One is that Nmap + hangs doing nothing and needs to be killed with Ctrl-C, and the + other is that it dies after printing "Initiating UDP Scan". Another + reported the same problem at + http://seclists.org/nmap-dev/2009/q3/0990.html, where it dies after + the first ARP request is sent. But Brandon has run Nmap on 10.6 + without problems. It is a bit of a mystery. [David] + +o [Ncat] Test, review, and (if appropriate) merge Venkat's HTTP Digest + proxy authentication patch. See + http://seclists.org/nmap-dev/2009/q3/773. [David] + o Add a way in NSE to set socket source addresses and port numbers. See this thread: http://seclists.org/nmap-dev/2009/q3/821. Some potential solutions are discussed later in the thread. -o [Zenmap] Solve some unusual utf8 Zenmap crashes reported in the - crash reporter. [David] - o Resolve allow_ipid_match issue which can cause some malformed replies to be ignored when we might be able to still use them. See this thread: http://seclists.org/nmap-dev/2009/q2/665 [David] @@ -53,6 +67,9 @@ o Resolve allow_ipid_match issue which can cause some malformed o Add --confdir option to Zenmap. See http://seclists.org/nmap-dev/2009/q1/92 [David] +o [Zenmap] Solve some unusual utf8 Zenmap crashes reported in the + crash reporter. [David] + o Web site HTML improvements - Maybe start with nmap.org. - Find and fix HTML validation problems, bad links. I'm not sure @@ -68,7 +85,8 @@ o Web site HTML improvements to) the root URL of current site. e.g. seclists.org, sectools.org, nmap.org rather than always insecure.org. -o in_chksum in packet.lua doesn't work with an odd number of bytes. +o [NSE] in_chksum in packet.lua doesn't work with an odd number of + bytes. o Upgrade to latest version of NSIS on Nmap Win build system [Fyodor]. @@ -85,17 +103,13 @@ o Windows 7 RTM Nmap testing (With particular attention to 64-bit and o New Nmap dev release (5.05BETA1 or whatever) o [NSE] HTTP header parsing is not very robust, and is duplicated in a -lot of places. For example, it's legal to have header fields like + lot of places. For example, it's legal to have header fields like Content-type:\r\n ___text/html\r\n (with spaces in place of _, but http.lua won't parse such a header correctly. In other words you can extend them to any number of lines as long as each line after the first begins with whitespace. [Joao] -o [Ncat] Test, review, and (if appropriate) merge Venkat's HTTP Digest - proxy authentication patch. See - http://seclists.org/nmap-dev/2009/q3/773. [David] - o Scanning through proxies o Nmap should be able to scan through proxy servers, particularly now that we have an NSE script for detectiong open proxies and now that @@ -141,23 +155,6 @@ o Scanning through proxies same basic engine. You should run your ideas by nmap-dev in as much detail as possible before starting. -o Potential OS X 10.6 problems. There are two issues reported by the - same user which may be related: - http://seclists.org/nmap-dev/2009/q3/0936.html, - http://seclists.org/nmap-dev/2009/q3/0996.html. One is that Nmap - hangs doing nothing and needs to be killed with Ctrl-C, and the - other is that it dies after printing "Initiating UDP Scan". Another - reported the same problem at - http://seclists.org/nmap-dev/2009/q3/0990.html, where it dies after - the first ARP request is sent. But Brandon has run Nmap on 10.6 - without problems. It is a bit of a mystery. [David] - -o [Ncat] Fix --max-conns on Windows so that it only counts concurrent - connections and not long-dead ones. See this thread - (http://seclists.org/nmap-dev/2009/q3/1017.html) and particularly this - message (http://seclists.org/nmap-dev/2009/q3/1032.html) for - details. Venkat has a patch for David to review and potentially merge. - o [NSE] We should do a favicon survey like the one Brandon did for /favicon.ico files but which uses the favicons specified by the HTML files rather than just that exact location. For example, insecure.org @@ -703,6 +700,10 @@ o random tip database DONE: +o [Seclists] There is currently some extra vertical space after the + first post of a thread in the thread index (example: + http://seclists.org/nmap-dev/2009/q4/index.html). + o [NSE] Decide which scripts belong to the "safe" category (we now have 20 which aren't either safe or intrusive), then remove the intrusive category since people can now specify "not safe". See