Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Nmap should log any (or open port) results even if host timeout is reached #64

Open
carnal0wnage opened this issue Feb 26, 2015 · 4 comments

Comments

@carnal0wnage
Copy link

Daniel replied with this on twitter: https://svn.nmap.org/nmap/todo/shinnok.txt

would be nice if hosts that come back with open ports, that info was logged (or loggable) even if the host-timeout it reached. just because the scan didnt finish i'd still like to log that it found port X,Y,and Z open.

@harisphnx
Copy link

Hello. Has this issue been worked upon?

@YogeshLele
Copy link

Hi @carnal0wnage / @dmiller-nmap,

Is this resolved? if not, I would like to work on this enhancement. Could you let me know some more details about this e.g.

  1. Steps to reproduce
  2. Any edge-cases where nmap should NOT log even if host timeout is reached.

Thanks.
Yogesh

@dmiller-nmap
Copy link

Possible patch. Requesting feedback: https://seclists.org/nmap-dev/2020/q1/1

@SM-nzberg
Copy link

Is there any update on releasing this feature?

I manually adapted the proposed patch to the current source and tried it. The additional output on STDOUT and Grepable output

"Partial results for 192.0.2.1 due to host timeout:"
"Host: 192.0.2.1 () Status: Timeout"

would already help. But I would prefer a better approach for the XML output.

@dmiller-nmap wrote:

The proposed partial output needs to be distinguished clearly from ordinary output so that it is not interpreted as complete.

If I had to choose between:

  • Missing any hosts completely, or
  • I may incorrectly interpret some output as complete,

I would definitely prefer the latter.

With the proposed patch, the partial results would be put within a hosthint element. However, existing software (e.g. Metasploit) does not process this element and the results would be lost.

In the meantime, with commit 14c7f87, the attribute timedout was added to the ordinary host element.

I would therefore propose and prefer to put the partial results to the host element. So existing software will not miss these results, while the timedout attribute clearly flags them as partial.

Any feedback on this?

Feature requested in 2015 (or even earlier) ... proposed patch in 2020 - I'd definitely love to see this feature finaly released in 2024 ;)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

5 participants