Date: Thu, 2 Feb 2023 20:08:46 +0530 From: Sambuddho Chakravarty <sambuddho@iiitd.ac.in> To: jhellenthal@dataix.net Cc: freebsd-security@freebsd.org Subject: Re: help regarding IP address spoofing (when using nmap) Message-ID: <CAK1-MKfXrogVdFWRO8ifQtn6HHq-CXBg2oHYC05VKjc3V%2Bv6vw@mail.gmail.com> In-Reply-To: <Y9u6yyIfz8nHpb5c@DataIX.net> References: <CAK1-MKcNetGHrg5VpHpmrE%2BXDf%2BSvn1pp-rWd%2BTzU9ay76frfw@mail.gmail.com> <Y9u6yyIfz8nHpb5c@DataIX.net>
next in thread | previous in thread | raw e-mail | index | archive | help
--00000000000066ad0d05f3b8860b Content-Type: text/plain; charset="UTF-8" It was running as root only... Also, no the address didn't belong to the interface, and I was spoofing it... So is there no way to spoof packet IP addresses ? On Thu, 2 Feb 2023, 18:59 J. Hellenthal, <jhellenthal@dataix.net> wrote: > On Thu, Feb 02, 2023 at 04:19:57PM +0530, Sambuddho Chakravarty wrote: > > Hi All > > I am a relatively newbie to FreeBSD (earlier was running > > Linux). I am running FreeBSD 13.1. > > I am trying to run nmap with source IP address spoofing > > (for some academic purposes). It works fine with Linux > > but on FreeBSD I get the following error: > > # nmap -e re0 -S 192.168.17.92 -sS 143.110.249.18 -p 8080 -Pn > > Starting Nmap 7.93 ( https://nmap.org ) at 2023-02-02 16:04 IST > > NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to 192.168.17.92:0 > failed > > (IOD #1): Can't assign requested address (49) > > NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to 192.168.17.92:0 > failed > > (IOD #2): Can't assign requested address (49) > > It works fine without the source spoofing but doesn't when I use > > it. I can however use my own machine's source IP address with > > the '-S' option. > > -- > > best, > > sambuddho > > sudo(8) or su(1) ? > > An address should also be assigned to a interface for it to be bound to. > > -- > The fact that there's a Highway to Hell but only a Stairway to Heaven says > a lot about anticipated traffic volume. > --00000000000066ad0d05f3b8860b Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable <div dir=3D"auto">It was running as root only...<div dir=3D"auto"><br></div= ><div dir=3D"auto">Also, no the address didn't belong to the interface,= =C2=A0 and I was spoofing it...</div><div dir=3D"auto"><br></div><div dir= =3D"auto">So is there no way to spoof packet IP addresses ?</div></div><br>= <div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail_attr">On Thu, 2 = Feb 2023, 18:59 J. Hellenthal, <<a href=3D"mailto:jhellenthal@dataix.net= ">jhellenthal@dataix.net</a>> wrote:<br></div><blockquote class=3D"gmail= _quote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:= 1ex">On Thu, Feb 02, 2023 at 04:19:57PM +0530, Sambuddho Chakravarty wrote:= <br> >=C2=A0 =C2=A0 Hi All<br> >=C2=A0 =C2=A0 =C2=A0I am a relatively newbie to FreeBSD (earlier was ru= nning<br> >=C2=A0 =C2=A0 Linux). I am running FreeBSD 13.1.=C2=A0<br> >=C2=A0 =C2=A0 I am trying to run nmap with source IP address spoofing= =C2=A0<br> >=C2=A0 =C2=A0 (for some academic purposes). It works fine with Linux=C2= =A0<br> >=C2=A0 =C2=A0 but on FreeBSD I get the following error:<br> >=C2=A0 =C2=A0 #=C2=A0nmap -e re0 -S 192.168.17.92 -sS 143.110.249.18=C2= =A0 -p 8080 -Pn<br> >=C2=A0 =C2=A0 Starting Nmap 7.93 ( <a href=3D"https://nmap.org" rel=3D"= noreferrer noreferrer" target=3D"_blank">https://nmap.org</a>; ) at 2023-02-= 02 16:04 IST<br> >=C2=A0 =C2=A0 NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to <a href= =3D"http://192.168.17.92:0" rel=3D"noreferrer noreferrer" target=3D"_blank"= >192.168.17.92:0</a> failed<br> >=C2=A0 =C2=A0 (IOD #1): Can't assign requested address (49)<br> >=C2=A0 =C2=A0 NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to <a href= =3D"http://192.168.17.92:0" rel=3D"noreferrer noreferrer" target=3D"_blank"= >192.168.17.92:0</a> failed<br> >=C2=A0 =C2=A0 (IOD #2): Can't assign requested address (49)<br> >=C2=A0 =C2=A0 It works fine without the source spoofing but doesn't= when I use<br> >=C2=A0 =C2=A0 it. I can however use my own machine's source IP addr= ess with<br> >=C2=A0 =C2=A0 the '-S' option.<br> >=C2=A0 =C2=A0 --<br> >=C2=A0 =C2=A0 best,<br> >=C2=A0 =C2=A0 sambuddho<br> <br> sudo(8) or su(1) ?<br> <br> An address should also be assigned to a interface for it to be bound to.<br= > <br> -- <br> The fact that there's a Highway to Hell but only a Stairway to Heaven s= ays a lot about anticipated traffic volume.<br> </blockquote></div> --00000000000066ad0d05f3b8860b--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAK1-MKfXrogVdFWRO8ifQtn6HHq-CXBg2oHYC05VKjc3V%2Bv6vw>