[3031] in comp.os.os2.announce archive
FREEWARE: TCP/IP Portscanner V1.40 is available
daemon@ATHENA.MIT.EDU (Ralf Christen)
Fri Jun 13 04:11:09 1997
To: os2ann.DISCUSS@bloom-picayune.MIT.EDU
Date: 12 Jun 1997 05:54:10 GMT
From: ralf.christen@ibm.net (Ralf Christen)
Reply-To: ralf.christen@ibm.net (Ralf Christen)
Reply-to: ralf.christen@ibm.net (Ralf Christen)
[Followups directed to comp.os.os2.networking.tcp-ip]
---------------------------------------------------------------------
The TCP/IP Portscanner V1.40 is available now!
What this software does
-----------------------
This software scans well known TCP/IP ports of one or more servers for active
services. You can specify a single server name (e.g. www.myserver.com) or a
range of IP-Addresses (e.g. from 192.85.184.12 to 192.85.184.66). Active port
numbers are being listed with the name of the service commonly used on this
port. You can also take in inventory of your IP addresses using the new PING
function for an entire range of IP-addresses
What you need
-------------
You need Warp V3 or Warp V4 with TCP/IP or the IBM Internet Access Kit
(IAK) installed to run this software.
Scanned ports - Recognized services
----------------------------------- The TCP/IP Portscanner scans all ports
listed in the SERVICES file stored in the ETC directory of your local
workstation. While Warp V4 has a usable SERVICES file, Warp V3 still has a
very old version without important services like HTTP (WWW) or POP. Thus, Warp
V3 users MUST update their SERVICES file with a newer version from a Warp V4
machine or downloaded one from the Technical Support Page at
http://www.dataline.ch/~rch/portscan
If you try to scan a server which is not powered on, the TCP/IP portscanner
stops scanning after 15 seconds.
Missed services
---------------
It is not necessary to run a server using the default port; it is also
possible to have a server using different port numbers. This is usually done
when running more than one server (of the same type) on the same machine (such
as two HTTP- Servers on the same system). One of those two servers must switch
from the default HTTP-Port 80 to a different number (let's say to 1234). Users
can still access this server using an URL such as
"http://www.myserver.com:1234". Since 1234 is not a standard port number, it
is not listed in the SERVICES file and will not be detected. Even if you
manually add port 1234 to the SERVICES file, we still can't detect the type of
server. This could be a HTTP-Server (moved from port 80), a NNTP-Server (moved
from port 119) or even a Time-Server (moved from port 37).
Purpose
-------
This is not a hacker tool! It is unfriendly (and maybe even unlawful) to scan
other people's servers. This software tries to CONNECT to the target server
using various TCP/IP port numbers. Be aware that your IP-Address is being
logged on the target system. The purpose of this software is to scan your OWN
systems to have an overview on what servers are running and therefore need
surveillance or additional protection. This is very important if you aren't
behind a firewall: One single (commonly unknown) TELNET- or REXEC-Server could
grant access to your entire network, including services such as NETBIOS, using
the authority of the workstation user the server is running on.
Download this software
----------------------
You can get the latest release of this software at:
http://www.dataline.ch/~rch/
If you have questions or suggestions, mail to:
ralf.christen@ibm.net
_____________________________________________________________________
| c.o.o.announce submissions: POST [or email comp-os-os2-announce@uunet.uu.net]
| Correspondence to the COOA Moderator: mailto:lfirrantello@bix.com .
| Please see: http://www.bix.com/pub/os2ann/pindex.htm for posting guidelines
