From owner-freebsd-questions@FreeBSD.ORG  Wed Jun 23 16:35:43 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1843916A4CE
	for <freebsd-questions@freebsd.org>;
	Wed, 23 Jun 2004 16:35:43 +0000 (GMT)
Received: from web14603.mail.yahoo.com (web14603.mail.yahoo.com
	[216.136.224.83])
	by mx1.FreeBSD.org (Postfix) with SMTP id DCBC443D46
	for <freebsd-questions@freebsd.org>;
	Wed, 23 Jun 2004 16:35:42 +0000 (GMT)
	(envelope-from plageotakes@yahoo.com)
Message-ID: <20040623163538.50855.qmail@web14603.mail.yahoo.com>
Received: from [68.164.229.2] by web14603.mail.yahoo.com via HTTP;
	Wed, 23 Jun 2004 09:35:38 PDT
Date: Wed, 23 Jun 2004 09:35:38 -0700 (PDT)
From: peter lageotakes <plageotakes@yahoo.com>
To: Jan Grant <Jan.Grant@bristol.ac.uk>, Edd <list@arameus.net>
In-Reply-To: <Pine.GSO.4.58.0406231456190.15108@mail.ilrt.bris.ac.uk>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
cc: freebsd-questions@freebsd.org
Subject: Re: Utility to guess a remote hosts operating system?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Jun 2004 16:35:43 -0000

--- Jan Grant <Jan.Grant@bristol.ac.uk> wrote:
> On Wed, 23 Jun 2004, Edd wrote:
> 
> > My question is:
> >
> > Does such a utility exist? I know nmap can guess
> os, but it takes a few
> > seconds and a port scan is needed first. Is there
> just a simply util
> > that can tell me without the port scan?
> 
> How would that operate? Some kind of network
> fingerprinting is required.
> If you can narrow down the parameters of your
> question (eg: I have a
> network of windows machines and I'd like to figure
> out exact versions on
> each one) then you might have more luck.
> 
> -- 
> jan grant, ILRT, University of Bristol.
> http://www.ilrt.bris.ac.uk/
> Tel +44(0)117 9287088 Fax +44 (0)117 9287112
> http://ioctl.org/jan/
>
__/\____/\_____/\____/|_____________________________________
> flatline
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
>
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe@freebsd.org"
> 

"Passive OS fingerprinting tool"
http://www.freebsd.org/cgi/ports.cgi?query=p0f&stype=all

Here is a snip from the ports description:
"Passive OS fingerprinting is based on information
coming from a remote host when it establishes a
connection to our system.  Captured packets contain
enough information to identify the operating system. 
In contrast to active scanners such as nmap and QueSO,
p0f does not send anything to the host being
identified."
Hope this helps


		
__________________________________
Do you Yahoo!?
Take Yahoo! Mail with you! Get it on your mobile phone.
http://mobile.yahoo.com/maildemo