有没有一种方法可以忽略扫描报告中没有响应的端口?
james@ahoi:~$ sudo hping3 -q --scan 1-1000 -S 192.168.0.1
Scanning 192.168.0.1 (192.168.0.1), port 1-1000
1000 ports to scan, use -V to see all the replies
+----+-----------+---------+---+-----+-----+-----+
|port| serv name | flags |ttl| id | win | len |
+----+-----------
我试图关闭tcp时间戳,但它没有工作。我执行的步骤如下:
$ sysctl -w net.ipv4.tcp_timestamps=0
$ sysctl -p
$ sysctl net.ipv4.tcp_timestamps (=> to be sure that it has been set to 0)
$ hping3 www.google.com -S -c 1 -p 443 --tcp-timestamp
我得到了:
TCP timestamp: tcpts=2513557362
我还试图通过wireshark嗅探流量,发现每个tcp数据包都包含时间戳字段中的值。
我正在使用4.
我想问一下,如何将插件(如下所示)添加到nagios核心4.X中
http://exchange.nagios.org/directory/Plugins/Network-Protocols/ICMP/chech_hping/details
我总是得到一个错误:
Error: Service check command 'check_hping' specified in service 'HPING3' for host 'cam_chodba' not defined anywhere
我已经在/usr/local/nagios/etc/ob
我们有一个相当复杂的iptable/ipchains配置,它是由APF生成的。端口80的通信应该被阻塞,但是我们的Apache日志显示有人能够探测到网页:
[Sun Feb 03 13:08:45 2013] [error] [client 50.57.125.169] File does not exist: /var/www/w00tw00t.at.blackhats.romanian.anti-sec:)
[Sun Feb 03 13:08:45 2013] [error] [client 50.57.125.169] File does not exist: /var/www/