From owner-freebsd-security Thu Nov 4 14:44:19 1999 Delivered-To: freebsd-security@freebsd.org Received: from blaubaer.kn-bremen.de (blaubaer.kn-bremen.de [195.37.179.254]) by hub.freebsd.org (Postfix) with ESMTP id 0F4F31568B for ; Thu, 4 Nov 1999 14:44:13 -0800 (PST) (envelope-from nox@saturn.kn-bremen.de) Received: from saturn.kn-bremen.de (uucp@localhost) by blaubaer.kn-bremen.de (8.9.1/8.9.1) with UUCP id XAA11397 for freebsd-security@FreeBSD.ORG; Thu, 4 Nov 1999 23:41:28 +0100 Received: (from nox@localhost) by saturn.kn-bremen.de (8.9.3/8.8.5) id XAA00600 for freebsd-security@FreeBSD.ORG; Thu, 4 Nov 1999 23:24:45 +0100 (MET) From: Juergen Lock Date: Thu, 4 Nov 1999 23:24:44 +0100 To: freebsd-security@FreeBSD.ORG Subject: nmap portscan hangs X server? Message-ID: <19991104232444.A590@saturn.kn-bremen.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.95.7i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I just installed nmap from ports and found out when i simply do a nmap 127.0.0.1 it'll hang the X server. (XFree86, not the latest version, mind you) Can anyone reproduce this? Be sure you can login over the net (or a serial tty) when you try this to be able to reboot the box as the console will be unusable after this. (otherwise you'll have to reset and wait for the fsck.) Btw a nmap -sS -O 127.0.0.1 will not hang it, which is what i tried first (from xnmap. this is probably to be expected as listening processes won't notice this type of portscan.) Anyway, for now I'm starting it with -nolisten tcp... (X has already been blocked from the outside in ipfw so i might as well do that too. but if you do need to display remote programs and ssh is too slow...) Oh and I tried some searching on the web but found no mention of this. Regards, -- Juergen Lock (remove dot foo from address to reply) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message