nmap 3.70 target table issues
Status: Alpha
Brought to you by:
hatique
Menu
▾
▴
Hello,
I just read about your article in Oct 2004 Linux Journal, and thought I would give your program a try.
I started with a bare mysql database and v3.70 of your nmap tar ball.
When I run nmap all the correct information is displayed on the screen, but the target table is not populated correctly. Hostnames are not matching up to IP address, or are missing all together. mac, os_guessed, and os_known are also not populated either.
Are there known issues with this table?
Thanks for the great software, being a DBA/Sysadmin it is a great way for me to learn Mysql and PHP.
--
SF
I'm also seeing problems with incorrect data going into tables.
Here's my configuration:
-----------------------
RedHat Enterprise 3
nmap-3.70
MySQL Ver 3.23.58
Used nmaplog.sql to generate tables.
Tables:
--------
hoststats: open_ports, ports_scanned and runid are always "0".
portstat: hostid is always "0". target_ip is always blank. runid is always "0".
runlist: runid is always "0".
targets: empty mac. NULL flag. NULL description. empty os_guessed. NULL os_known. empty fingerprint.
Can anyone help?
The author, Hasnain, provided me a work in progress that seems to fix a lot of these issues, it's called "nmap-3.70-0.0.6", although he said it's still very much in flux. I too have had problems with the package, but he's done a great job of slicking it out and fixing issues.
Shoot and email over to him at hatique@hasnains.com and ask for "nmap-3.70-0.0.6.tar.gz". Hope you don't mind Hasnain. ;)
DNS and os_guessed fix.
I was able to modify nmap.cc to get the correct dns names in.
Look for the code:
if (hostname[0] != 0x00)
strcpy (sql.target.host.name, hostname);
delete these two lines and add the following in its place:
strcpy (sql.target.host.name, currenths->HostName ());
and just after that I added the following line to add the os_guessed to it:
strcpy (sql.target.os_guessed, currenths->FPR->prints[0]->OS_name);
That line is just a hack right now, I am sure it belongs somewhere else.
Not sure if this is ok as far as the release goes, but it worked wonders for me.
BTW. I am using SUSE 9.0 with mysql 4.0.18-32.1 and of course nmap 3.70 tar file from this site.
Good luck,
Shawn
I'm aware of the issues and they're mostly fixed in the version Matt is speaking of. I'm still testing a couple of things and hope to put up a working version by tomorrow.
-- Hasnain
I think I've now got a clean version on nmap 3.70. Would any of you like to give it a whirl? email me and I'll send the sources.
I think I'll add the sources to v3.75 and then put up here.
Also, any brave soul want to write an interface to the data collected?
-- Hasnain