foudn that five files can be open on Mac OS X: stdin, stdout, stderr, /dev/tty,
and /private/var/run/utmpx. This could cause a non-root scan at a high scan
rateto fail with the message "Too many open files". I was able to cause this
with "nmap --min-rate 5000 localhost -p-".
That command still fails with the same error message, but for an entirely
different reason. After a while, one of the connect calls fails with an errno of
22 = EINVAL, Invalid argument. Whatever this means, the socket doesn't get
closed, Nmap just reports a "Strange error from connect". The socket is still
open but Nmap doesn't include it in its count of open sockets, so it's off by
one (or more, conceivably). This allows it to try to open one too many sockets
and bomb with an error message.
Note that running as non-root is important both because it uses a connect scan
and because non-root users have a lower limit on open files.
I've tried just closing the socket when EINVAL is returned, and that fixes the
problem. But that's likely to differ on different systems. Plus I don't know why
EINVAL is returned; maybe it's an OS bug. This only affects localhost scans and
only at high scan rates, so I'm leaving it alone.
it was 32 characters. The "idle scan against " and the \0 terminator take up 19
characters, leaving only 13, which isn't enough to represent all IP addresses,
let alone host names.
represents a significant portion of our total returned fingerprints.
I especially liked adding the X-ray machine...
Here is the "changelog":
* Added Tolis BRU (Backup and Restore Utility)
* Added HP Digital Sender Service client
* Added Apple iChat Server file transfer proxy
* Added PBS/Maui Roll Rocks Cluster service
* Added CommVault Galaxy data backup
* Added Ad-Aware SE Enterprise
* Added Pharos Notify printing client
* Added Apple Remote Events
* Added Novell Groupwise SSL match so the SSL tunneling works
* Added Novell Groupwise HTTP services (holy crap there are a lot!)
* Changed "Compaq Diagnostis httpd" to correct spelling and removed o/Windows/
* Changed winshell to include i/**BACKDOOR**/
* Added Bruker AXS X-ray controller status (I was tempted to set d// to death-ray :-p)
line length) during Nmap windows build so that it looks much better
when presented by the Windows executable (NSIS) installer. Thanks
to Jah for the patch (which was modified slightly by Fyodor).
