[3557] in comp.os.os2.announce archive
FREEWARE: TCP/IP Portscanner V1.60 available
daemon@ATHENA.MIT.EDU (Ralf Christen)
Sat Nov 15 02:08:38 1997
To: os2ann.DISCUSS@bloom-picayune.MIT.EDU
Date: 15 Nov 1997 01:05:00 -0400
From: ralf.christen@ibm.net (Ralf Christen)
Reply-To: ralf.christen@ibm.net (Ralf Christen)
Reply-to: ralf.christen@ibm.net (Ralf Christen)
[Followups directed to comp.os.os2.networking.tcp-ip]
---------------------------------------------------------------------
The TCP/IP Portscanner V1.60 is available now!
What this software does
-----------------------
This software scans well known TCP/IP ports of one or more servers for
active services. You can specify a single server name (e.g.
www.myserver.com) or a range of IP-Addresses (e.g. from 192.85.184.12 to
192.85.184.66). You can also put a list of IP-Addresses into a simple ASCII
file (one IP-Address per line) and process this list. Be aware that
hostnames are not allowed in an IP-Address file. Active port numbers are
being listed with the name of the service commonly used on this port.
What you need
-------------
You need Warp V3 or Warp V4 with TCP/IP or the IBM Internet Access Kit
(IAK) installed to run this software.
Scanned ports - Recognized services
-----------------------------------
The TCP/IP Portscanner scans all ports listed in the SERVICES file stored in
the ETC directory of your local workstation. While Warp V4 has a usable
SERVICES file, Warp V3 still has a very old version without important
services like HTTP (WWW) or POP. Thus, Warp V3 users MUST update their
SERVICES file with a newer version from a Warp V4 machine or downloaded one
from the Technical Support Page at
http://www.dataline.ch/~rch/portscan
If you try to scan a server which is not powered on, the TCP/IP
portscanner stops scanning after 15 seconds.
Missed services
---------------
It is not necessary to run a server using the default port; it is also
possible to have a server using different port numbers. This is usually done
when running more than one server (of the same type) on the same machine
(such as two HTTP- Servers on the same system). One of those two servers
must switch from the default HTTP-Port 80 to a different number (let's say
to 1234). Users can still access this server using an URL such as
"http://www.myserver.com:1234". Since 1234 is not a standard port number,
it is not listed in the SERVICES file and will not be detected. Even if you
manually add port 1234 to the SERVICES file, we still can't detect the type
of server. This could be a HTTP-Server (moved from port 80), a NNTP-Server
(moved from port 119) or even a Time-Server (moved from port 37).
Purpose
-------
This is not a hacker tool! It is unfriendly (and maybe even unlawful) to
scan other people's servers. This software tries to CONNECT to the target
server using various TCP/IP port numbers. Be aware that your IP-Address is
being logged on the target system. The purpose of this software is to scan
your OWN systems to have an overview on what servers are running and
therefore need surveillance or additional protection. This is very important
if you aren't behind a firewall: One single (commonly unknown) TELNET- or
REXEC-Server could grant access to your entire network, including services
such as NETBIOS, using the authority of the workstation user the server is
running on.
What's new in this release
--------------------------
- Ability to export data to an ASCII file
- A full set of commandline parameters
- Buttons are disabled while scan is running
- Fix: The IP-filename overrode the name of the SERVICES file. Maybe you
have to re-enter the name of your SERVICES file.
Download this software
----------------------
You can get the latest release of this software at:
http://www.horgen.net/rem/software/
If you have questions or suggestions, mail to:
ralf.christen@ibm.net
_____________________________________________________________________
| NOTE: Please send submissions by EMAIL os2_ann_req@bix.com
| Correspondence to the COOA Moderator: lfirrantello@bix.com .
| Please see: http://www.bix.com/pub/os2ann/pindex.htm for posting guidelines