Date: Thu, 02 Feb 2023 08:48:34 -0600 From: Joey Kelly <joey@joeykelly.net> To: freebsd-security@freebsd.org Subject: Re: help regarding IP address spoofing (when using nmap) Message-ID: <10158910.FP6jjVeTY9@nathan.bibleheroes> In-Reply-To: <CAK1-MKfXrogVdFWRO8ifQtn6HHq-CXBg2oHYC05VKjc3V%2Bv6vw@mail.gmail.com> References: <CAK1-MKcNetGHrg5VpHpmrE%2BXDf%2BSvn1pp-rWd%2BTzU9ay76frfw@mail.gmail.com> <Y9u6yyIfz8nHpb5c@DataIX.net> <CAK1-MKfXrogVdFWRO8ifQtn6HHq-CXBg2oHYC05VKjc3V%2Bv6vw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thursday, February 2, 2023 8:38:46 AM CST Sambuddho Chakravarty wrote: > It was running as root only... > > Also, no the address didn't belong to the interface, and I was spoofing > it... > > So is there no way to spoof packet IP addresses ? I don't know how nmap spoofs an IP, but in a pinch you could alias the IP you want first, run your scan, then drop the alias. --Joey Kelly > > On Thu, 2 Feb 2023, 18:59 J. Hellenthal, <jhellenthal@dataix.net> wrote: > > On Thu, Feb 02, 2023 at 04:19:57PM +0530, Sambuddho Chakravarty wrote: > > > Hi All > > > > > > I am a relatively newbie to FreeBSD (earlier was running > > > > > > Linux). I am running FreeBSD 13.1. > > > I am trying to run nmap with source IP address spoofing > > > (for some academic purposes). It works fine with Linux > > > but on FreeBSD I get the following error: > > > # nmap -e re0 -S 192.168.17.92 -sS 143.110.249.18 -p 8080 -Pn > > > Starting Nmap 7.93 ( https://nmap.org ) at 2023-02-02 16:04 IST > > > NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to 192.168.17.92:0 > > > > failed > > > > > (IOD #1): Can't assign requested address (49) > > > NSOCK ERROR [0.0170s] mksock_bind_addr(): Bind to 192.168.17.92:0 > > > > failed > > > > > (IOD #2): Can't assign requested address (49) > > > It works fine without the source spoofing but doesn't when I use > > > it. I can however use my own machine's source IP address with > > > the '-S' option. > > > -- > > > best, > > > sambuddho > > > > sudo(8) or su(1) ? > > > > An address should also be assigned to a interface for it to be bound to. > > > > -- > > The fact that there's a Highway to Hell but only a Stairway to Heaven says > > a lot about anticipated traffic volume. -- Joey Kelly Minister of the Gospel and Linux Consultant http://joeykelly.net 504-239-6550
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?10158910.FP6jjVeTY9>