#322137 nmap: [manual] Rewrite option section to mention privileged users/normal users

Package:
nmap
Source:
nmap
Description:
The Network Mapper
Submitter:
Jari Aalto
Date:
2021-09-22 04:43:44 UTC
Severity:
minor
Tags:
#322137#5
Date:
2005-08-09 09:24:35 UTC
From:
To:
PROBLEM DESCRIPTION

There a wealth of options in NMAP and the on problem is that most of
the time regular user is faced with:

    $ nmap -sU host
    You requested a scan type which requires r00t privileges, and you do not have them.

By reading the manual page, it is not crustal clear and easy to find what
exact options can only be user by privileged users and which can be be
used by all users. There are bits and pieces like:

      -sS    TCP SYN scan: This technique is often referred to as "half-open"
             scanning, because you don't open a full TCP connection. You send
             ...
	     This is the default scan type for privileged users.

       -sT    TCP connect() scan: This is the most basic form of TCP scanning.
              The connect() system call provided by your operating  system  is
	      ...<tens of lines after>....
	      This is the default scan type for unprivileged users.

And this does not mention the issue at all (need 'root' btw):

       -sU    UDP scans: This method is used  to  determine  which  UDP  (User
              Datagram Protocol, RFC 768) ports are open on a host.  The tech-

SOLUTION SUGGESTION

It would greatly help reading the manual if the need for privileves
would be mentiones at the beginning of option description. To the reader,
that is searching for usable options, this is the primary information that
should stike to the eye at a glance.

A simple notation like this could help a great deal:

      -sS    [priviledged user] TCP SYN scan: This technique is often
	     referred to as "half-open"
	     ...
      -sT    [priviledged user] TCP connect() scan: This is the most
	     basic form of TCP scanning
	     ...
       -sU   [priviledged user] UDP scans: This method is used
	     to  determine  which  UDP  (User
	     ...

There would be no need to mention non-privileged user if it were
explained that all options that have NOT been marked as privileged
are free for all users to activate.

#322137#10
Date:
2010-12-22 22:13:20 UTC
From:
To:
tags 322137 + patch
thanks

patch to rewrite option section to mention privileged users/normal user

#322137#17
Date:
2010-12-23 10:35:42 UTC
From:
To:
Thank you for the patch, but there are a couple concerns:

o This patch adds a "[privileged user]" tag to the docs for some
  operations, but there are other options which require privileges
  as well.  Plus, at least one of the options you add this tag
  to (-sT) does not actually require privileges.

o The nroff man page is automatically generated.  We only make
  changes to the source Docbook XML
  file (http://nmap.org/svn/docs/refguide.xml)

Thanks,
Fyodor

#322137#22
Date:
2010-12-23 16:44:19 UTC
From:
To:
 El 23/12/10 05:35, Fyodor escribió:

On Wed, Dec 22, 2010 at 05:13:20PM -0500, Daniel Echeverry wrote:

 tags 322137 + patch
thanks

patch to rewrite option section to mention privileged users/normal user

 Thank you for the patch, but there are a couple concerns:

o This patch adds a "[privileged user]" tag to the docs for some
  operations, but there are other options which require privileges
  as well.  Plus, at least one of the options you add this tag
  to (-sT) does not actually require privileges.

 Hi.

if you wish, I could add the tag "[privileged user]" to the options also
require root privileges. What are the other options?

 o The nroff man page is automatically generated.  We only make
  changes to the source Docbook XML
  file (http://nmap.org/svn/docs/refguide.xml)


No problem, makes the patch file refguide.xml

Thanks,
Fyodor

#322137#27
Date:
2010-12-28 20:41:16 UTC
From:
To:
Hi,

Patch for refguide.xml
Thanks!

#322137#32
Date:
2018-10-31 07:15:07 UTC
From:
To:
Hello, I'm doing bug triage of nmap and I would like to address this issue.

It would be great if nmap docs were more clarifying as to when root is
needed.

I saw the patches but I don't think we should do it on Debian side, it
would be better if somebody could submit a PR to nmap on Github[0], that
way it benefits the upstream and everyone who uses nmap (on any distros).

If anybody is interested on it, please submit upstream.

I might create an issue upstream if there's no movement here so they can
track this issue, and it can also increase the chances of them receiving
contributions.

Thanks,

[0]https://github.com/nmap/nmap

#322137#37
Date:
2021-09-22 04:26:15 UTC
From:
To:
Hello,

Good morning,

We have gone through your samples from a partner and Here is our  Order
List. Please do bear in mind that we are very much in  need of this
order, quote your competitive prices.

Kindly send the Order confirmation.

Your early reply will be much appreciated.

Best Regards,

Maryanah Erwin.

PT FINDORA INTERNUSA

Jln Pahlawan 66 Kec. Arjawinangun

45162 CIREBON West-Java INDONESIA

tel : +62 231 357334

fax: +62 231 357260

email: marketing@findora.com