pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/net nmap: updated to 7.92



details:   https://anonhg.NetBSD.org/pkgsrc/rev/5e444c03f1fa
branches:  trunk
changeset: 457459:5e444c03f1fa
user:      adam <adam%pkgsrc.org@localhost>
date:      Thu Aug 26 08:24:48 2021 +0000

description:
nmap: updated to 7.92

Nmap 7.92 [2021-08-08]

o [Windows] Upgraded Npcap to version 1.50, the fastest and most stable release
  yet. Among the many exciting changes listed at https://npcap.org/changelog is
  support for Windows on ARM, which means Nmap can now run on lightweight
  Windows tablets like the Surface Pro X.

o  Updated Nmap's NPSL license to rewrite a poorly-worded
  clause which many folks interpreted as a "field of endeavor
  restriction" related to "proprietary software companies".  We are
  retroactively offering Nmap versions 7.90 and 7.91 under this new
  Version 0.93 of the NPSL so that users and distributors may choose
  either version of the license.

o [Windows] Updated our Windows builds to Visual Studio 2019, Windows 10 SDK,
  and the UCRT, removing support for Windows Vista and earlier. Npcap is
  required for packet injection and capture, not WinPcap.

o New Nmap option --unique will prevent Nmap from scanning the same IP address
  twice, which can happen when different names resolve to the same address. [Daniel Miller]

o [NSE] Added 3 NSE scripts, from 4 authors, bringing the total up to 604!
  They are all listed at https://nmap.org/nsedoc/, and the summaries are
  below:

  +  nbns-interfaces queries NetBIOS name service (NBNS) to gather IP
    addresses of the target's network interfaces [Andrey Zhukov]

  +  openflow-info gathers preferred and supported protocol versions
    from OpenFlow devices [Jay Smith, Mak Kolybabi]

  + port-states prints a list of ports that were found in each state, including
    states that were summarized as "Not shown: X closed ports" [Daniel Miller]

o Several changes to UDP payloads to improve accuracy:

  +  Fix an issue with -sU where payload data went out-of-scope before
    it was used, causing corrupted payloads to be sent. [Mariusz Ziulek]

  + Nmap's retransmission limits were preventing some UDP payloads from being
    tried with -sU and -PU. Now, Nmap sends each payload for a particular port
    at the same time without delay. [Daniel Miller]

  + New UDP payloads:
    -  TS3INIT1 for UDP 3389 [colcrunch]
    -  DTLS for UDP 3391 (RD Gateway) [Arnim Rupp]


o [NSE] TLS 1.3 now supported by most scripts for which it is
  relevant, such as ssl-enum-ciphers. Some functions like ssl tunnel
  connections and certificate parsing will require OpenSSL 1.1.1 or later to
  fully support TLS 1.3. [Daniel Miller]

o Changes to Nmap's XML output:

  + If a host times out, the XML <host> element will have the attribute
    timedout="true" and the host's timing info (srtt etc.) will still be printed.

  + The "extrareasons" element now includes a list of port numbers for each
    "ignored" state. The "All X ports" and "Not shown:" lines in normal output
    have been changed slightly to provide more detail. [Daniel Miller]

o  Fix an issue in addrset matching that was causing all targets to be
  excluded if the --excludefile listed a CIDR range that contains an earlier,
  smaller CIDR range. [Daniel Miller]

o Setting --host-timeout=0 will disable the host timeout, which is set by -T5
  to 15 minutes. Earlier versions of Nmap require the user to specify a very
  long timeout instead.

o [NSE] Prevent the ssl-* NSE scripts from probing ports that were
  excluded from version scan, usually 9100-9107, since JetDirect will print
  anything sent to these ports. [Daniel Miller]

o  Nmap no longer produces cryptic message "Failed to convert
  source address to presentation format" when unable to find useable route
  to the target. [nnposter]

o [Ncat] Use safety-checked versions of FD_* macros to abort early if
  number of connections exceeds FD_SETSIZE. [Pavel Zhukov]

o [Ncat] Connections proxied via SOCKS4/SOCKS5 were intermittently dropping
  server data sent right after the connection got established, such as port
  banners. [Sami Pönkänen]

o [Ncat] Fixed a bug in proxy connect mode which would close the
  connection as soon as it was opened in Nmap 7.90 and 7.91.

o [NSE] Fixed NSE so it will not consolidate all port script output
  for targets which share an IP (e.g. HTTP vhosts) under one target. [Daniel Miller]

o [Zenmap] Fixed an issue where a failure to execute Nmap would result
  in a Zenmap crash with "TypeError: coercing to Unicode" exception.

o Nmap no longer considers an ICMP Host Unreachable as confirmation that a
  target is down, in accordance with RFC 1122 which says these errors may be
  transient. Instead, the probe will be destroyed and other probes used to
  determine aliveness. [Daniel Miller]

o [Ncat] Ncat no longer crashes when used with Unix domain sockets.

o [Ncat] Ncat is now again generating certificates
  with the duration of one year. Due to a bug, recent versions of Ncat were
  using only one minute. [Tobias Girstmair]

o [NSE] URL/percent-encoding is now using uppercase hex digits
  to align with RFC 3986, section 2.1, and to improve compatibility with some
  real-world web servers. [nnposter]

o [NSE] Script hostmap-crtsh got improved in several ways. The most
  visible are that certificate SANs are properly split apart and that
  identities that are syntactically incorrect to be hostnames are now ignored.
  [Michel Le Bihan, nnposter]

o [NSE] Loading of a Nikto database failed if the file was referenced
  relative to the Nmap directory [nnposter]

o [NSE] SMB2 dialect handling has been redesigned. Visible
  changes include:
  * Notable improvement in speed of script smb-protocols and others
  * Some SMB scripts are no longer using a hardcoded dialect, improving
    target interoperability
  * Dialect names are aligned with Microsoft, such as 3.0.2, instead of 3.02
  [nnposter]

o [NSE] Script smb2-vuln-uptime no longer reports false positives when
  the target does not provide its boot time. [nnposter]

o [NSE] Client packets composed by the DHCP library will now contain
  option 51 (IP address lease time) only when requested. [nnposter]

o [NSE] XML decoding in library citrixxml no longer crashes when
  encountering a character reference with codepoint greater than 255. (These
  references are now left unmodified.) [nnposter]

o [NSE] Script mysql-audit now defaults to the bundled mysql-cis.audit for
  the audit rule base. [nnposter]

o [NSE] It is now possible to control whether the SNMP library uses
  v1 (default) or v2c by setting script argument snmp.version. [nnposter]

diffstat:

 net/ndiff/distinfo       |  10 +++++-----
 net/nmap/Makefile.common |   4 ++--
 net/nmap/PLIST           |   5 ++++-
 net/nmap/distinfo        |  10 +++++-----
 net/zenmap/distinfo      |  10 +++++-----
 5 files changed, 21 insertions(+), 18 deletions(-)

diffs (97 lines):

diff -r 39f92f1e98d8 -r 5e444c03f1fa net/ndiff/distinfo
--- a/net/ndiff/distinfo        Thu Aug 26 08:22:49 2021 +0000
+++ b/net/ndiff/distinfo        Thu Aug 26 08:24:48 2021 +0000
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.3 2021/04/16 06:55:33 adam Exp $
+$NetBSD: distinfo,v 1.4 2021/08/26 08:24:48 adam Exp $
 
-SHA1 (nmap-7.91.tar.bz2) = e72198f463ee9d557e4c5c9444cc5a0e5c36b00c
-RMD160 (nmap-7.91.tar.bz2) = 3e011fdd6fb3b391a3cbfc6e4c7ec35ccfe1819b
-SHA512 (nmap-7.91.tar.bz2) = 9d59f031b5f748311e9f9a0b9d05ad4a7a70fc6ac17598d7c4c81a4825c95d53817d74435d839e67b9379a052f2d37889fd634f9c75301a851f465d60fb9974d
-Size (nmap-7.91.tar.bz2) = 10503500 bytes
+SHA1 (nmap-7.92.tar.bz2) = 62342a9a6641833c5c16b7a24ced4bace68c60fb
+RMD160 (nmap-7.92.tar.bz2) = 90e066815ff7f9d6e8bffcd6464a22061c150a24
+SHA512 (nmap-7.92.tar.bz2) = 7828367f9dc76ff4d1e8c821260e565fb0c3cb6aba0473d24759133a3006cdf2cb087574f0dd7d2ba47a63754ba4f72e0b78cdae1333a58f05c41d428b56ad59
+Size (nmap-7.92.tar.bz2) = 10498200 bytes
diff -r 39f92f1e98d8 -r 5e444c03f1fa net/nmap/Makefile.common
--- a/net/nmap/Makefile.common  Thu Aug 26 08:22:49 2021 +0000
+++ b/net/nmap/Makefile.common  Thu Aug 26 08:24:48 2021 +0000
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile.common,v 1.4 2021/04/16 06:55:33 adam Exp $
+# $NetBSD: Makefile.common,v 1.5 2021/08/26 08:24:48 adam Exp $
 # used by net/ndiff/Makefile
 # used by net/nmap/Makefile
 # used by net/zenmap/Makefile
 
-DISTNAME=      nmap-7.91
+DISTNAME=      nmap-7.92
 CATEGORIES=    net security
 MASTER_SITES=  http://nmap.org/dist/
 EXTRACT_SUFX=  .tar.bz2
diff -r 39f92f1e98d8 -r 5e444c03f1fa net/nmap/PLIST
--- a/net/nmap/PLIST    Thu Aug 26 08:22:49 2021 +0000
+++ b/net/nmap/PLIST    Thu Aug 26 08:24:48 2021 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.31 2021/04/16 06:55:33 adam Exp $
+@comment $NetBSD: PLIST,v 1.32 2021/08/26 08:24:48 adam Exp $
 bin/ncat
 bin/nmap
 bin/nping
@@ -599,6 +599,7 @@
 ${PLIST.lua}share/nmap/scripts/nat-pmp-info.nse
 ${PLIST.lua}share/nmap/scripts/nat-pmp-mapport.nse
 ${PLIST.lua}share/nmap/scripts/nbd-info.nse
+${PLIST.lua}share/nmap/scripts/nbns-interfaces.nse
 ${PLIST.lua}share/nmap/scripts/nbstat.nse
 ${PLIST.lua}share/nmap/scripts/ncp-enum-users.nse
 ${PLIST.lua}share/nmap/scripts/ncp-serverinfo.nse
@@ -624,6 +625,7 @@
 ${PLIST.lua}share/nmap/scripts/omp2-brute.nse
 ${PLIST.lua}share/nmap/scripts/omp2-enum-targets.nse
 ${PLIST.lua}share/nmap/scripts/omron-info.nse
+${PLIST.lua}share/nmap/scripts/openflow-info.nse
 ${PLIST.lua}share/nmap/scripts/openlookup-info.nse
 ${PLIST.lua}share/nmap/scripts/openvas-otp-brute.nse
 ${PLIST.lua}share/nmap/scripts/openwebnet-discovery.nse
@@ -642,6 +644,7 @@
 ${PLIST.lua}share/nmap/scripts/pop3-brute.nse
 ${PLIST.lua}share/nmap/scripts/pop3-capabilities.nse
 ${PLIST.lua}share/nmap/scripts/pop3-ntlm-info.nse
+${PLIST.lua}share/nmap/scripts/port-states.nse
 ${PLIST.lua}share/nmap/scripts/pptp-version.nse
 ${PLIST.lua}share/nmap/scripts/puppet-naivesigning.nse
 ${PLIST.lua}share/nmap/scripts/qconn-exec.nse
diff -r 39f92f1e98d8 -r 5e444c03f1fa net/nmap/distinfo
--- a/net/nmap/distinfo Thu Aug 26 08:22:49 2021 +0000
+++ b/net/nmap/distinfo Thu Aug 26 08:24:48 2021 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.80 2021/04/16 06:55:33 adam Exp $
+$NetBSD: distinfo,v 1.81 2021/08/26 08:24:48 adam Exp $
 
-SHA1 (nmap-7.91.tar.bz2) = e72198f463ee9d557e4c5c9444cc5a0e5c36b00c
-RMD160 (nmap-7.91.tar.bz2) = 3e011fdd6fb3b391a3cbfc6e4c7ec35ccfe1819b
-SHA512 (nmap-7.91.tar.bz2) = 9d59f031b5f748311e9f9a0b9d05ad4a7a70fc6ac17598d7c4c81a4825c95d53817d74435d839e67b9379a052f2d37889fd634f9c75301a851f465d60fb9974d
-Size (nmap-7.91.tar.bz2) = 10503500 bytes
+SHA1 (nmap-7.92.tar.bz2) = 62342a9a6641833c5c16b7a24ced4bace68c60fb
+RMD160 (nmap-7.92.tar.bz2) = 90e066815ff7f9d6e8bffcd6464a22061c150a24
+SHA512 (nmap-7.92.tar.bz2) = 7828367f9dc76ff4d1e8c821260e565fb0c3cb6aba0473d24759133a3006cdf2cb087574f0dd7d2ba47a63754ba4f72e0b78cdae1333a58f05c41d428b56ad59
+Size (nmap-7.92.tar.bz2) = 10498200 bytes
 SHA1 (patch-configure) = 5fc39f084eadd6ea0560cd8e6f52074113566600
 SHA1 (patch-libdnet-stripped_src_arp-bsd.c) = c56c4e70eca2fa04dd8aab38ed2c3f4cac83f5e3
 SHA1 (patch-libnetutil_netutil.cc) = 7bd1059d6cbcf4f6d129730d6c6f6bc3ab54c0a0
diff -r 39f92f1e98d8 -r 5e444c03f1fa net/zenmap/distinfo
--- a/net/zenmap/distinfo       Thu Aug 26 08:22:49 2021 +0000
+++ b/net/zenmap/distinfo       Thu Aug 26 08:24:48 2021 +0000
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.3 2021/04/16 06:55:33 adam Exp $
+$NetBSD: distinfo,v 1.4 2021/08/26 08:24:48 adam Exp $
 
-SHA1 (nmap-7.91.tar.bz2) = e72198f463ee9d557e4c5c9444cc5a0e5c36b00c
-RMD160 (nmap-7.91.tar.bz2) = 3e011fdd6fb3b391a3cbfc6e4c7ec35ccfe1819b
-SHA512 (nmap-7.91.tar.bz2) = 9d59f031b5f748311e9f9a0b9d05ad4a7a70fc6ac17598d7c4c81a4825c95d53817d74435d839e67b9379a052f2d37889fd634f9c75301a851f465d60fb9974d
-Size (nmap-7.91.tar.bz2) = 10503500 bytes
+SHA1 (nmap-7.92.tar.bz2) = 62342a9a6641833c5c16b7a24ced4bace68c60fb
+RMD160 (nmap-7.92.tar.bz2) = 90e066815ff7f9d6e8bffcd6464a22061c150a24
+SHA512 (nmap-7.92.tar.bz2) = 7828367f9dc76ff4d1e8c821260e565fb0c3cb6aba0473d24759133a3006cdf2cb087574f0dd7d2ba47a63754ba4f72e0b78cdae1333a58f05c41d428b56ad59
+Size (nmap-7.92.tar.bz2) = 10498200 bytes
 SHA1 (patch-zenmapCore_Paths.py) = 55ccc83a8f7dd302e4b0ffc1df0837ff651ba913



Home | Main Index | Thread Index | Old Index