-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 El 2006-10-26 a las 17:41 -0300, ricardo escribió:
la cuestiòn: conocen de algo similar para los usuarios de linux parecido a esto (ya conozco nmap, etc)?
He visto mencionar en la lista inglesa un traceroute modificado que usa una tecnica similar a nmap -sS para ver si un puerto está abierto, usando paquetes tcp, y que puede servir para esto: tcptraceroute-1.5beta7-1.guru.suse101 tcptraceroute is a traceroute implementation using TCP packets. The more traditional traceroute(8) sends out either UDP or ICMP ECHO packets with a TTL of one, and increments the TTL until the destination has been reached. By printing the gateways that generate ICMP time exceeded messages along the way, it is able to determine the path packets are taking to reach the destination. The problem is that with the widespread use of firewalls on the modern Internet, many of the packets that traceroute(8) sends out end up being filtered, making it impossible to completely trace the path to the destination. However, in many cases, these firewalls will permit inbound TCP packets to specific ports that hosts sitting behind the firewall are listening for connections on. By sending out TCP SYN packets instead of UDP or ICMP ECHO packets, tcptraceroute is able to bypass the most common firewall filters. It is worth noting that tcptraceroute never completely establishes a TCP connection with the destination host. If the host is not listening for incoming connections, it will respond with an RST indicating that the port is closed. If the host instead responds with a SYN|ACK, the port is known to be open, and an RST is sent by the kernel tcptraceroute is running on to tear down the connection without completing three-way handshake. This is the same half-open scanning technique that nmap(1) uses when passed the -sS flag. - -- Saludos Carlos E. R. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Made with pgp4pine 1.76 iD8DBQFFQ63ftTMYHG2NR9URAkVRAJ9h/Ykc87V0haye32m1xWjzSnBzggCcCYU4 WDvyCikqaajnQZAKBuyuFU0= =gB7g -----END PGP SIGNATURE-----