From owner-freebsd-security Thu Mar 6 9:39:25 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D51DC37B401 for ; Thu, 6 Mar 2003 09:39:22 -0800 (PST) Received: from MX2.estpak.ee (ld3.estpak.ee [194.126.101.102]) by mx1.FreeBSD.org (Postfix) with ESMTP id 55D2643FDF for ; Thu, 6 Mar 2003 09:39:20 -0800 (PST) (envelope-from kalts@estpak.ee) Received: from kevad.internal (80-235-33-134-dsl.mus.estpak.ee [80.235.33.134]) by MX2.estpak.ee (Postfix) with ESMTP id D67AC73549; Thu, 6 Mar 2003 19:37:55 +0200 (EET) Received: (from vallo@localhost) by kevad.internal (8.12.6/8.12.6/Submit) id h26HdDwt004160; Thu, 6 Mar 2003 19:39:13 +0200 (EET) (envelope-from vallo) Date: Thu, 6 Mar 2003 19:39:12 +0200 From: Vallo Kallaste To: Mike Tancsa Cc: freebsd-security@freebsd.org Subject: Re: network audit of sendmail Message-ID: <20030306173912.GA4030@kevad.internal> Reply-To: kalts@estpak.ee References: <5.2.0.9.0.20030306094902.06e759a8@marble.sentex.ca> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <5.2.0.9.0.20030306094902.06e759a8@marble.sentex.ca> User-Agent: Mutt/1.5.1i-ja.1 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Mar 06, 2003 at 10:41:43AM -0500, Mike Tancsa wrote: > > I want to go through my network to a) ensure all my machines are updated > and b)look for customer machines running vulnerable versions of > sendmail. I put together a quick perl script, but its sequential and does > not scan in parallel. (this is slow for 16,000 hosts). Can anyone recommend > a tool to do this ? Essentially all I want to do is connect to port 25, > grab the banner and record it next to the IP address. Nessus seems to be > way overkill and I dont see a way in nmap to record the banner > output. Before I spend time to figure out how to use threads (or fork off > processes) in perl, am I re-inventing the wheel so to speak ? Is there a > script out there to do this ? I tried looking through google but didnt find > anything Split the whole IP range into pieces and fork off just as many workers as you want/system resources permit. In the first time I tought of forking as something messy and over my head, but it did work out within an hour or so and I didn't have any previous knowledge at all. Threading in perl is probably more hairy, but I really haven't tried myself because of no demand, so YMMV. -- Vallo Kallaste To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message