OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Frodor (frodor_at_insecure.org)
Date: Wed Dec 18 2002 - 03:51:44 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    -----BEGIN PGP SIGNED MESSAGE-----

    Hello everyone,

    The clock just passed midnight, ushering us into the much awaited day
    of December 18! On this day comes a new release -- one even more
    important than _The Two Towers_. Yes, I'm talking about Nmap
    3.10ALPHA7! This version restores support for the One True OS for
    paranoid security guys (OpenBSD). Incidentally, I also fixed Windows
    compilation and put up Windows (zip format) binaries. And speaking of
    bloated software, Nmap has finally reached seven figures:

    - -rw-r--r-- 1 fyodor fyodor 1063681 Dec 18 01:03 nmap-3.10ALPHA7.tgz

    Yep! This is the first official release tarball to surpass a
    megabyte. I hope to keep Nmap expanding at a rate well below that of
    improvements in storage and network bandwidth. In exchange for that
    extra 70KB, you get more man page translations, an upgraded Libpcap
    and a bunch of bugfixes. Oh, and I did some research on US export
    laws. It appears that exporting Nmap to most countries is actually
    legal under the Commerce Department's Export Control Classification
    Number 5D992. Jeez, perhaps I've been wasting my time all these years
    with this secret handle business! Maybe I should add a little crypto
    to put Nmap in the more hardcore 5D002 classification :).

    OK, enough rambling. Here is the CHANGELOG since ALPHA4 (5 and 6 were
    unofficial releases):

    o Upgraded libpcap from version 0.6.2 to 0.7.1. Updated the
      libpcap-possiblymodified/NMAP_MODIFICATIONS file to give a much
      more extensive list (including diffs) of the changes included
      in the Nmap bundled version of Libpcap.

    o Applied patch to fix a libpcap alignment bug found by Tom Duffy
      (tduffysun.com).

    o Fixed Windows compilation.

    o Applied patch by Chad Loder (cloderloder.us) of Rapid7 which
      fixes OpenBSD compilation. I believe Chad is now the official
      OpenBSD Nmap "port" maintainer. His patch also adjusted
      random-scan (-iR) to include the recently allocated 82.0.0.0/8
      space.

    o Fixed (I hope) a few compilation problems on
      non-IPv6-enabled machines which were noted by Josef 'Jupp'
      Schugt (juppgmx.de)

    o Included some man page translations which were inadvertently
      missed in previous tarballs.

    o Applied patch from Matthieu Verbert (mvezurich.ibm.com) which
      places the Nmap man pages under ${prefix}/share/man rather than
      ${prefix}/man when installed via RPM. Maybe the tarball
      install should do this too? Opinions?

    o Applied patch from R Anderson (listboxpole-position.org) which
      improves the way ICMP port unreachables from intermediate hosts
      are handled during UDP scans.

    o Added note to man page related to Nmap US export control. I
      believe Nmap falls under ECCN 5D992, which has no special
      restrictions beyond the standard export denial to a handful of
      rogue nations such as Iraq and North Korea.

    o Added a warning that some hosts may be skipped and/or repeated
      when someone tries to --resume a --randomize_hosts scan. This
      was suggested by Crayden Mantelium (craydensensewave.com)

    o Fixed a minor memory leak noted by Michael Davis
      (mikedatanerds.net).

    For those of you running Linux/x86 w/a recent version of rpm
    (www.rpm.org), you can install/upgrade to the newest version of
    nmap/nmapfe by executing these commands as root:

    rpm -vhU (nmap url)
    where (nmap url) is one (or both) of these:

    http://download.insecure.org/nmap/dist/nmap-3.10ALPHA7-1.i386.rpm
    http://download.insecure.org/nmap/dist/nmap-frontend-3.10ALPHA7-1.i386.rpm

    For the rest of you, source tarballs and source RPMs are always
    available at: http://www.insecure.org/nmap/nmap_download.html

    For the more paranoid (smart) members of the list, here are the md5
    hashes:

    e41942becd42e3261cc301eb0d6acce0 nmap-3.10ALPHA7-1.i386.rpm
    ff6a4d6abe3795f75acdc4dbe4367fd4 nmap-3.10ALPHA7-1.src.rpm
    a4085ac2d77d9ddf55c539c34b178474 nmap-3.10ALPHA7.tgz
    5a25b99bb106fcf2d423dcd37f3b032d nmap-3.10ALPHA7-win32.zip
    350c7279e6ef8505beb7d8317bc75ec6 nmap-frontend-3.10ALPHA7-1.i386.rpm

    These release notes should be signed with my PGP key, which is available at
    http://www.insecure.org/fyodor_gpgkey.txt .
    The key fingerprint is: 97 2F 93 AB 9C B0 09 80 D9 51 40 6B B9 BC E1 7E

    Cheers,
    Frodor

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.0.4 (GNU/Linux)
    Comment: For info see http://www.gnupg.org

    iQCVAwUBPgBEDM4dPqJTWH2VAQGCLAQAkQU1PD1TBnSTK3CK5pAzhO3OXDHSzFGq
    wf+qg9hr7g2dOtBt+06/nk1vUupCSgT3Ie/xTnojb/0n2Oa1iRgY9I4y/gn9YsIC
    9k7I0YvDGv+WmsZr0KVLwsUu0wsxMlhI7xw9MNtHV5nfl9R6lxdP2msbeAoKtNZq
    Rt1CrmMzL4M=
    =x62b
    -----END PGP SIGNATURE-----

    --------------------------------------------------
    For help using this (nmap-hackers) mailing list, send a blank email to
    nmap-hackers-helpinsecure.org . List run by ezmlm-idx (www.ezmlm.org).