From f802f7ac09d330a6a73d3a7e97d216bb536abc59 Mon Sep 17 00:00:00 2001 From: fyodor Date: Thu, 30 Jun 2011 08:50:24 +0000 Subject: [PATCH] Made a bunch of additions to the CHANGELOG in prep for 5.59BETA1 release. It still needs some reorganization though --- CHANGELOG | 170 ++++++++++++++++++++++++++++++++++++++++++------------ 1 file changed, 134 insertions(+), 36 deletions(-) diff --git a/CHANGELOG b/CHANGELOG index 27c079ca9..588c9d6d5 100644 --- a/CHANGELOG +++ b/CHANGELOG @@ -1,6 +1,6 @@ # Nmap Changelog ($Id$); -*-text-*- -Nmap 5.59BETA1 [2011-06-29] +Nmap 5.59BETA1 [2011-06-30] o [NSE] Added 40 scripts, bringing the total to 217! You can learn more about any of them at http://nmap.org/nsedoc/. Here are the new @@ -166,9 +166,39 @@ o [NSE] Added 40 scripts, bringing the total to 217! You can learn supported auth mechanisms, compression methods and whether TLS is supported and mandatory. [Vasiliy Kulikov] -o [Ncat] Added support for building a portable version of Ncat for the - Microsoft Windows platform, by means of static linking. You can read - more about it in Ncat's INSTALL file. +o [NSE] Added 7 new protocol libraries, bringing the total to 66. You + can read about them all at http://nmap.org/nsedoc/. Here are the new + ones (authors listed in brackets): + + + creds: Handles storage and retrieval of discovered credentials + (such as passwords discovered by brute force scripts). [Patrik + Karlsson] + + + ncp: A tiny implementation of the Novell Netware Core Protocol + (NCP). [Patrik Karlsson] + + + omp2: OpenVAS Management Protocol (OMP) version 2 support. [Henri + Doreau] + + + sip: Supports a limited subset of SIP commands and + methods. [Patrik Karlsson] + + + smtp: Simple Mail Transfer Protocol (SMTP) operations. [Djalal + Harouni] + + + srvloc: A relatively small implementation of the Service Location + Protocol. [Patrik Karlsson] + + + tftp: Library implementing a minimal TFTP server. [Patrik + Karlsson] + +o Improved Nmap's service/version detection database by adding: + + Apple iPhoto (DPAP) protocol probe [Patrik] + + Zend Java Bridge probe [Michael Schierl] + + BackOrifice probe [Gorjan Petrovski] + + GKrellM probe [Toni Ruotto] + + Signature improvements for a wide variety of services (we now have + 7,375 signatures) o [NSE] Replaced http-trace with a new more effective version. [Paulino] @@ -192,10 +222,35 @@ o Added support for raw-packet IPv6 scans! This means SYN scan, UDP (e.g. fe80::9afc:22ee:bc91:3e1d%eth0) [Added by David and Weilin] +o Added IPv6 --traceroute support. [David] + +o Added IPv6 protocol scan (-sO) support, including creating realistic + headers for many protocols. [David] + +o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied + patch from Dan Miller that fixes errors in processing and sorting ipv6 + addresses in scripts using these libraries. [Daniel Miller, Patrik] + o Scanme.Nmap.Org is now dual-stacked (has an IPv6 address as well as IPv4) so you can scan it during IPv6 testing. We also added a DNS record for ScanmeV6.nmap.org which is IPv6-only. [Fyodor] +o [Nmap] --exclude and --excludefile now support IPV6 addresses with netmasks + [Colin] + +o The Nmap.Org website as well as sister sites Insecure.Org, + SecLists.Org, and SecTools.Org all have working IPv6 addresses now. + +o Performed some output cleanup work to remove various status lines in cases + that they don't really matter. This makes it easier to find the + good stuff! [David] + +o The development pace has greatly increased because Google (again) + sponsored a 7 full-time college and graduate student programmer + interns this summer as part of their Summer of Code program! + Thanks, Google Open Source Department! We're delighted to introduce + the team: http://seclists.org/nmap-dev/2011/q2/312 + o [Zenmap] Fixed issue with Zenmap not being able to kill the Nmap scan subprocess upon canceling a scan or quitting the application on Windows. [Shinnok] @@ -204,16 +259,31 @@ o [Zenmap] Fixed issue with Zenmap not waiting for the return exit code of the Nmap scan subprocess after killing it on Posix systems, thus leaving the processes in a defunct(zombie) state. [Shinnok] +o [NSE] Banned scripts from being in both the "default" and + "intrusive" categories. We did this by removing dhcp-discover and + dns-zone-transfer from the set of scripts run by default (leaving + them "intrusive"), and reclassifying dns-recusion, ftp-bounce, + http-open-proxy, and socks-open-proxy as "safe" rather than + "intrusive" (keeping them in the "default" set). + o [NSE] The host.bin_ip and host.bin_ip_src entries now also work with 16-byte IPv6 addresses. [David] -o [NSE] Added 300+ new signatures to http-enum [Paulino] +o [NSE] Added 300+ new signatures to http-enum which look for admin + directories, JBoss, Tomcat, TikiWiki, Majordomo2, MS SQL, Wordpress, + and more. [Paulino] o [Ncat] Updated the ca-bundle.crt list of certificate authority certificates. [David] -o [Nmap] --exclude and --excludefile now support IPV6 addresses with netmasks - [Colin] +o [NSE] Fixed a bug in the SMB Authentication library which could + prevent concurrently running scripts with valid credentials from + logging in. [Chris Woodbury] + +o [NSE] Re-worked http-form-brute.nse to better autodetect form + fields, allow brute force attempts where only the password (no + username) is needed, follow HTTP redirects, and better detect + incorrect login attempts. [Patrik] o [Zenmap] Changed "Slow comprehensive scan" profile script selection from "all" to "default or (discovery and safe)" categories, which specifies that @@ -226,26 +296,33 @@ o [Zenmap] Changed "Slow comprehensive scan" profile script selection from o [NSE] Added credential storage library (creds.lua) and modified the brute library and scripts to make use of it. [Patrik] -o [NSE] Added ipv6 support to the wsdd, dnssd and upnp libraries. Applied - patch from Dan Miller that fixes errors in processing and sorting ipv6 - addresses in scripts using these libraries. [Daniel Miller, Patrik] +o [Ncat] Added support for building a portable version of Ncat for the + Microsoft Windows platform, by means of static linking. This allows + you to drop it by itself on pretty much any Windows system without + worrying about installing anything else or including a bunch of DLL + library or data files. You can read more about it in Ncat's INSTALL + file (http://nmap.org/svn/ncat/INSTALL). + +o [NSE] Added the stdnse.silent_require method which is used for + library requires that you know might fail (e.g. "openssl" fails if + Nmap was compiled without that library and the new "root" library + fails Nmap isn't running with raw packet sending privileges). If + these libraries are called with silent_require and fail to load, the + script will cease running but the user won't be presented with ugly + failure messages as would happen with a normal require. [Patrick + Donnelly] o [Ncat] ncat now listens on localhost and ::1 when you do ncat -l. If you specify an address or use -4,-6 it works as before. o [NSE] Added the Simple Mail Transfer Protocol (SMTP) library. [Djalal] -o Added IPv6 --traceroute support. [David] - o [Zenmap] Fixed endpoints which were behind firewalls during a traceroute being attached to the wrong spot on the topology map. [Colin Rice] o [Zenmap] Fixed issue with ports closed in newer scan not being removed from the ports list [Colin Rice] -o [NSE] Added new fingerprint data to http-fingerprints.lua and favicon-db - for CakePHP applications. [Paulino Calderon] - o Stopped linking against libnl when not necessary (when linking dynamically with libpcap). Patch by Kevin Locke. @@ -260,6 +337,11 @@ o [Zenmap] Fixed an error that could cause a crash ("TypeError: an o [Ndiff] Added nmaprun element information to the diff. [Daniel Miller] +o Created a page on our SecWiki for collecting Nmap script ideas! If + you have a good idea, post it to the incoming section of the page. + Or if you're in a script writing mood but don't know what to write, + come here for inspiration: https://secwiki.org/w/Nmap_Script_Ideas. + o Added a GKrellM service probe from Toni Ruottu. o [NSE] Added nmap.get_interface and nmap.get_interface_info functions @@ -286,17 +368,13 @@ o Fixed an overflow in scan elapsed time display that caused negative times to be printed after about 25 days. [Daniel Miller] o [NSE] ssh-hostkey now additionally has a postrule that prints hosts - that have the same hostkey. [Henri Doreau] + found during the scan which share the same hostkey. [Henri Doreau] -o Nmap no longer searches for data files (like nmap-services) in the - current directory as a last resort. This is to reduce the chance of - accessing an unexpected file in case the system-installed data files - are not found. The main reason for searching the current directory - was to support running ./nmap from a source directory. This is now - supported by searching the directory containing the Nmap executable - for data files. On non-Windows platforms, the executable directory - followed by "../share/nmap" is also searched. Thanks to Solar - Designer for implementation advice. [David] +o Nmap now determines the location it is being run from and that + location is now included early in the search path for data files + (such as nmap-services). For full details, see + http://nmap.org/book/data-files-replacing-data-files.html. Thanks + to Solar Designer for implementation advice. [David] o Updated nmap-rpc from the master list, now maintained by IANA. [Daniel Miller, David] @@ -318,7 +396,8 @@ o [Ndiff] Fixed the Mac OS X packages to use the correct path for was reported by Wellington Castello. [David] o Removed the -sR (RPC scan) option--it is now an alias for -sV - (version scan), which always does RPC scan when appropriate. + (version scan), which always does RPC scan when an rpcinfo service + is detected. o [NSE] Merged the ms-sql branch with several improvements and changes to the ms-sql scripts and library: @@ -339,8 +418,8 @@ o [NSE] Fixed http.validate_options when handling a cookie table. o Added a Service Tags UDP probe for port 6481/udp. [David] -o [NSE] Enhanced firewalk.nse to automatically find the gateways at - which probes are dropped. [Henri Doreau] +o [NSE] Enabled firewalk.nse to automatically find the gateways at + which probes are dropped and fixed various bugs. [Henri Doreau] o [NSE] Use the correct script name in the usage example of the smtp-enum-users script. Reported by Jamuse, who also contributed @@ -361,18 +440,37 @@ o [Zenmap] Worked around a pycairo bug that prevented saving the (like StringIO)". The problem was reported by Alex Kah. [David] o The -V and --version options now show the platform Nmap was compiled - on, which features are compiled in, the version numbers of - libraries it is linked against, and whether the libraries are the - ones that come with Nmap or are from the operating system. - [Ambarisha B., David] + on, which features are compiled in, the version numbers of libraries + it is linked against, and whether the libraries are the ones that + come with Nmap or the operating system. [Ambarisha B., David] o Fixed some inconsistencies in nmap-os-db reported by Xavier Sudre from netVigilance. -o Updated IANA IP address space assignment list for random IP (-iR) - generation. This list now contains only various reserved blocks as - IANA has handed out the final unallocated IPv4 addresses to the - RIRs. [Kris] +o Made the final IP address space assignment update as all available + IPv4 address blocks have now been allocated to the regional + registries. Our random IP generation (-iR) logic now only excludes + the various reserved blocks. Thanks to Kris for years of regular + updates to this function! + +o The Nmap Win32 uninstaller now properly deletes nping.exe. [Fyodor] + +o Fix a segmentation fault which could occur when running Nmap on + various Andriod-based phones. The problem related to NULL being + passed to freeaddrinfo(). [David, Vlatko Kosturjak] + +o [NSE] Added a shortport.ssl function which can be used as a script + portrule to match SSL services. It is similar in concept to our + existing shortport.http. [David] + +o Set up the RPM build to use the compat-glibc and compat-gcc-34-c++ + packages (on CentOS 5.3) to resolve a report of Nmap failing to run + on old versions of Glibc. [David] + +o We no longer support Nmap on versions of Windows earlier than XP + SP2. Even Microsoft no longer supports Windows versions that old. + But if you must use Nmap on such systems anyway, please see + https://secwiki.org/w/Nmap_On_Old_Windows_Releases. Nmap 5.51 [2011-02-11]