From c7af8736a7db297c39b46bfe64bb25e0a38c1a20 Mon Sep 17 00:00:00 2001
From: patrik <patrik@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Sun, 3 Apr 2011 20:44:42 +0000
Subject: [PATCH] Applied the following patch from Chris Woodbury to make
 ms-sql-info run less often: http://seclists.org/nmap-dev/2011/q1/1102
 [Patrik]

---
 scripts/ms-sql-info.nse | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/scripts/ms-sql-info.nse b/scripts/ms-sql-info.nse
index b47186eca..613923daf 100644
--- a/scripts/ms-sql-info.nse
+++ b/scripts/ms-sql-info.nse
@@ -115,7 +115,17 @@ hostrule = function(host)
 	if ( mssql.Helper.WasDiscoveryPerformed( host ) ) then
 		return mssql.Helper.GetDiscoveredInstances( host ) ~= nil
 	else
-		return true
+		local sqlDefaultPort = nmap.get_port_state( host, {number = 1433, protocol = "tcp"} )
+		local sqlBrowserPort = nmap.get_port_state( host, {number = 1434, protocol = "udp"} )
+		-- smb.get_port() will return nil if no SMB port was scanned OR if SMB ports were scanned but none was open
+		local smbPortNumber = smb.get_port( host )
+		
+		if ( (stdnse.get_script_args( {"mssql.instance-all", "mssql.instance-name", "mssql.instance-port"} ) ~= nil) or
+				(sqlBrowserPort and sqlBrowserPort.state ~= "closed") or
+				(sqlDefaultPort and sqlDefaultPort.state ~= "closed") or
+				(smbPortNumber ~= nil)  ) then
+			return true
+		end
 	end
 end