Changelog for
ncat-6.49BETA6-3.44.x86_64.rpm :
Thu Nov 19 13:00:00 2015 drahtAATTschaltsekun.de
FIXME: changelog needed.
Mon Oct 5 14:00:00 2015 astiegerAATTsuse.com
- Unbreak everything not Factory
Mon Oct 5 14:00:00 2015 plinnellAATTopensuse.org
- Fix the build for Factory. Insist on lua 5.2.x
Thu Jul 30 14:00:00 2015 dimstarAATTopensuse.org
- BuildRequire lua52-devel on openSUSE > 13.2 (current Tumbleweed):
nmap has not been ported to LUA 5.3 yet.
- Minor fix in check session: internal lua identifies itself as
5.2.3 by now.
Tue Mar 3 13:00:00 2015 astiegerAATTsuse.com
- fix build on SLE 12 by removing gpg-offline dependency
- run spec-cleaner
Tue Aug 26 14:00:00 2014 andreas.stiegerAATTgmx.de
- Nmap 6.47:
* updated IPv4 OS fingerprints
* Removed the External Entity Declaration from the DOCTYPE in
Nmap\'s XML. The doctype is now:
* Ncat: Fixed SOCKS5 username/password authentication
* Avoid formatting NULL as \"%s\" when running nmap --iflist
* Zenmap, Ndiff: Avoid crashing with old PyXML package
* Handle ICMP admin-prohibited messages when doing service version
detection.
* NSE: Fix a bug causing http.head to not honor redirects.
* Zenmap: Fix a bug in DiffViewer causing a crash
- fix self-obsoletion of zenmap (nmap-gtk)
Sat Apr 26 14:00:00 2014 andreas.stiegerAATTgmx.de
- Nmap 6.46
- NSE:
* Made numerous improvements to ssl-heartbleed to provide
more reliable detection of the vulnerability
* Fix some bugs which could cause snmp-ios-config and
snmp-sysdescr scripts to crash
* Improved performance of citrixlua library when handling large
XML responses containing application lists
- Zenmap:
* Fixed a bug which caused this crash message: \"IOError:
[Errno socket error] [Errno 10060] A connection attempt
failed [...]\" due to DOCTYPE definition to Nmap\'s XML output
Sat Apr 12 14:00:00 2014 andreas.stiegerAATTgmx.de
- Nmap 6.45
- NSE:
* Add ssl-heartbleed script to detect the Heartbleed OpenSSL bug
* Fixed an error-handling bug in socks-open-proxy that caused it
to fail when scanning a SOCKS4-only proxy
* Improved ntp-info script to handle underscores in returned
data
* Add quake1-info script for retrieving server and player
information from Quake 1 game servers
* Add unicode library for decoding and encoding UTF-8, UTF-16,
CP437 and other character sets to Unicode code points. Scripts
that previously just added or skipped nulls in UTF-16 data can
use this to support non-ASCII characters
* When doing a ping scan (-sn), the --open option will prevent down
hosts from being shown when -v is specified. This aligns with
similar output for othe rscan types
* Add http-ntlm-info script for getting server information from
Web servers that require NTLM authentication
* Added tls library for functions related to SSLv3 and TLS
messages. Existing ssl-enum-ciphers, ssl-date, and
tls-nextprotoneg scripts were updated to use this library
* Add sstp-discover script to discover Microsoft\'s Secure Socket
Tunnelling Protocol
* Added unittest library and NSE script for adding unit tests to
NSE libraries
* Added allseeingeye-info script
* Add freelancer-info script
* Add http-server-header script
* Add rfc868-time script
* Add weblogic-t3-info script
* Removed a fixed value (28428) which was being set for the Request
ID in the snmpWalk library function
* Add http-iis-short-name-brute script
* Add http-dlink-backdoor
* Made telnet-brute support multiple parallel guessing threads
* Made the table returned by ssh1.fetch_host_key contain a \"key\"
element, like that of ssh2.fetch_host_key
* Update dns-cache-snoop script to use a new list of top 50
domains rather than a 2010 list
* Added the qconn-exec script
- Ncat:
* Added support for socks5 and corresponding regression tests.
* Fixed compilation when --without-liblua is specified
* Added NCAT_PROTO, NCAT_REMOTE_ADDR, NCAT_REMOTE_PORT,
NCAT_LOCAL_ADDR and NCAT_LOCAL_PORT environment variables being
set in all --
*-exec child processes.
- Nsock:
* Handle timers and timeouts via a priority queue
- Various:
* Added TCP support to dns.lua
* Added safe fd_set operations. This makes nmap fail gracefully
instead of crashing when the number of file descriptors grows
over FD_SETSIZE
* Updated bundled liblua from 5.2.2 to 5.2.3 (bugfix release)
* Added version detection signatures and probes for a bunch of
Android remote mouse/keyboard servers, including AndroMouse,
AirHID, Wifi-mouse, and RemoteMouse.
* Fixed a bug with UDP checksum calculation
* Idle scan now supports IPv6
* The ICMP ID of ICMP probes is now matched against the sent ICMP
ID to reduce the chance of false matches
- Zenmap:
* Fixed a crash that would happen when you entered a search
term starting with a colon
Fri Dec 6 13:00:00 2013 andreas.stiegerAATTgmx.de
- add missing python-gtk dependency for zenmap [bnc#752158]
Mon Aug 19 14:00:00 2013 andreas.stiegerAATTgmx.de
- update to 6.40
- [Ncat] Added --lua-exec
- new and updated IPv4 OS fingerprints
- new and updated IPv6 OS fingerprints
- new and updated service/version fingerprints
- [Nsock] Added initial proxy support to Nsock
- [NSE] Added 14 NSE scripts
- Updated the Nmap license terms, still GPL-2.0+
https://svn.nmap.org/nmap/COPYING.
- [NSE] fix possibility of writing arbitrary file to client system
when using the http-domino-enum-passwords script with the
domino-enum-passwords.idpath parameter against a malicious server
- Unicast CIDR-style IPv6 range scanning is now supported
- It\'s now possible to mix IPv4 range notation with CIDR netmasks in
target specifications.
- Timeout script-args are now standardized to use the timespec that
Nmap\'s command-line arguments take (5s, 5000ms, 1h, etc.)
- Nmap may now partially rearrange its target list for more efficient
host groups.
- [Ncat] The -i option (idle timeout) now works in listen mode as well as
connect mode.
- [Ncat] Ncat now support chained certificates with the --ssl-cert
option.
- [Nping] Nping now checks for a matching ICMP ID on echo replies
- [NSE] The ipOps.isPrivate library now considers the deprecated
site-local prefix fec0::/10 to be private.
- Nmap\'s routing table is now sorted first by netmask, then by metric.
- Routes are now sorted to prefer those with a lower metric.
- Fixed a byte-ordering problem on little-endian architectures when doing
idle scan with a zombie that uses broken ID increments.
- Stop parsing TCP options after reaching EOL in libnetutil.
- [NSE] The dns-ip6-arpa-scan script now optionally accepts \"/\" syntax for
a network mask
- Fixed our NSEDoc system for UTF-8 names
- UDP protocol payloads were added for detecting the Murmer service
- [NSE] Added http-phpmyadmin-dir-traversal
- Fixed address matching for SCTP (-PY) ping
- Removed some non-ANSI-C strftime format strings (\"%F\") and
locale-dependent formats (\"%c\") from NSE scripts and libraries.
- [Zenmap] Improved internationalization support
- [Zenmap] Fixed internationalization files
- [NSE] Updated the included Liblua from version 5.2.1 to 5.2.2.
- [Nsock] Added a minimal regression test suite for Nsock.
- [NSE] Updated the redis-brute and redis-info scripts to work against
the latest versions of redis server
- [Ncat] Fixed errors in connecting to IPv6 proxies.
- [NSE] Updated hostmap-bfk to work with the latest version of their website
- [NSE] Added XML structured output support to:
+ xmpp-info, irc-info, sslv2, address-info
+ hostmap-bfk, hostmap-robtex, hostmap-ip2hosts.
+ http-git.nse.
- Added new service probes for:
+ Erlang distribution nodes
+ Minecraft servers.
+ Hazelcast data grid.
- [NSE] Rewrote telnet-brute for better compatibility with a variety of
telnet servers.
- Fixed a regression that changed the number of delimiters in machine
output.
- Fixed a regression in broadcast-dropbox-listener which prevented it from
producing output.
- Handle ICMP type 11 (Time Exceeded) responses to port scan probes.
- Add new decoders (BROWSER, DHCP6 and LLMNR) to broadcast-listener and
changed output of some of the decoders slightly.
- Namespace the pipes used to communicate with subprocesses by PID, to avoid
multiple instances of Ncat from interfering with each other.
- [NSE] Changed ip-geolocation-geoplugin to use the web service\'s new output
format.
- Limited the number of open sockets in ultra_scan to FD_SETSIZE.
- Fixed a bug that prevented Nmap from finding any interfaces when one of
them had the type ARP_HDR_APPLETALK
- [Ncat] Ncat now keeps running in connect mode after receiving EOF from the
remote socket, unless --recv-only is in effect.
- Packet trace of ICMP packets now include the ICMP ID and sequence number
by default.
- [NSE] Fixed various NSEDoc bugs
- [Zenmap] Zenmap now understands the NMAP_PRIVILEGED and NMAP_UNPRIVILEGED
environment variables.
- Added an ncat_assert macro.
- Added nmap-fo.xsl to convert Nmap XML into XSL-FO, which can be converted
into PDF using tools suck as Apache FOP.
- Increased the number of slack file descriptors not used during connect
scan.
- Changed the --webxml XSL stylesheet to point to the new location of
nmap.xsl in the new repository (https://svn.nmap.org/nmap/docs/nmap.xsl).
- [NSE] The vulnerability library can now preserve vulnerability information
across multiple ports of the same host.
- Removed the undocumented -q option, which renamed the nmap process to
something like \"pine\".
- Moved the Japanese man page from man1/jp to man1/ja. JP is a country code
while JA is a language code.
- [Nsock] Reworked the logging infrastructure to make it more flexible and
consistent.
- [NSE] Fixed scripts using unconnected UDP sockets.
- Made some changes to Ndiff to reduce parsing time when dealing with large
Nmap XML output files.
- [Zenmap] Fixed a crash that could be caused by opening the About dialog,
using the window manager to close it, and opening it again.
- [Ncat] Made test-addrset.sh exit with nonzero status if any tests
fail.
- Fixed compilation with --without-liblua.
- Fixed CRC32c calculation (as used in SCTP scans) on 64-bit
platforms.
- [NSE] Added multicast group name output to broadcast-igmp-discovery.nse.
- [NSE] Added new fingerprints for http-enum: Sitecore, Moodle, typo3,
SquirrelMail, RoundCube.
- Packaging changes:
* remove nmap-ncat-fail-test-addrset.patch, committed upstream
* ja locale was corrected upstream
Sun Mar 10 13:00:00 2013 andreas.stiegerAATTgmx.de
- add verification of gpg signatures of source tarballs
Sat Dec 8 13:00:00 2012 andreas.stiegerAATTgmx.de
- run available unit tests
- add nmap-ncat-fail-test-addrset.patch to make ncat tests effective
- add nmap-ncat-skip-network-tests.patch to skip tests requiring
name resolution
Sun Dec 2 13:00:00 2012 andreas.stiegerAATTgmx.de
- update to 6.25
+ add 373 IPv4 OS fingerprints and improve existing fingerprints
+ add more than 400 service/version detection fingerprints
+ integrate latest IPv6 OS submissions and corrections
+ Enabled support for IPv6 traceroute using UDP, SCTP, and IPProto
(Next Header) probes.
+ Scripts can now return a structured name-value table so that results
are query-able from XML output. Scripts can return a string as
before, or a table, or a table and a string. In this last case, the
table will go to XML output and the string will go to screen output.
+ Ncat: Added support for Unix domain sockets. The new -U and
- -unixsock options activate this mode.
+ removal of Windows dependencies reduces size of source tarball
+ Replaced old RPC grinder with NSE-based implementation
+ Updated Nmap Scripting Engine to use Lua 5.2
+ Added 85 NSE scripts
+ Added 12 new protocol libraries:
* ajp (Apache JServ Protocol)
* base32 (Base32 encoding/decoding - RFC 4648)
* bjnp (Canon BJNP printer/scanner discovery protocol)
* cassandra (Cassandra database protocol)
* eigrp (Cisco Enhanced Interior Gateway Routing Protocol)
* gps (Global Positioning System - does GPRMC NMEA decoding)
* ipp (CUPS Internet Printing Protocol)
* isns (Internet Storage Name Service)
* jdwp (Java Debug Wire Protocol)
* mobileme (a service for managing Apple/Mac devices)
* ospf (Open Shortest Path First routing protocol)
* rdp (Remote Desktop Protocol)
+ added more Common Platform Enumeration (CPE) identifiers
+ Scans that use OS sockets (including TCP connect scan, version
detection, and script scan) now use the SO_BINDTODEVICE sockopt on
Linux, so that the -e (select network device) option is
honored.
+ [Zenmap] Host filters can now do negative matching, for example you
can use \"os:!linux\" to match hosts NOT detected as Linux.
+ further minor improvements and bug fixes as listed in
http://nmap.org/changelog.html
- for openSUSE releases where lua 5.2 is available, build with that
library, otherwise use the library that comes with the sources
- add tests for the correct system or included libraries
- refresh nmap-4.75-nostrip.patch
- refresh su-to-zenmap.patch
Mon Jul 16 14:00:00 2012 andreas.stiegerAATTgmx.de
- update manpages glob to fix Factory build
Sat Jun 23 14:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 6.0.1
* fix a zenmap a crash that happened when activating the host filter.
* fix finding network interfaces if one of them is in monitor mode
* fixx greppable output of hosts that time-out
Mon May 21 14:00:00 2012 andreas.stiegerAATTgmx.de
- update to upstream 6.00
* enhanced Nmap Scripting Engine
* Better Web Scanning
* Full IPv6 Support
* New NPing Tool
* Better Zenmap GUI & results viewer
* Faster scans
* for a full list of changes see http://nmap.org/6/#changes and
http://nmap.org/changelog.html
- refresh nmap-4.00-libpcap-filter.diff
Tue Mar 27 14:00:00 2012 andreas.stiegerAATTgmx.de
- as nmap is built with the inluded and stripped nmap-libdnet-1.12,
remove system libdnet as build requirement
Mon Mar 26 14:00:00 2012 andreas.stiegerAATTgmx.de
- Update to nmap-5.61TEST5
- refresh nmap-4.00-libpcap-filter.diff for moved source lines
- refresh nmap-4.00-noreturn.diff for moved source lines
- refresh nmap-4.75-nostrip.patch for moved source lines
- update nmap-5.00-desktop_files.patch
to nmap-5.61-desktop_files.patch for change source
- update su-to-zenmap.patch for moved source lines
Mon Mar 26 14:00:00 2012 dimstarAATTopensuse.org
- Conditionally change lua-devel BuildRequires to lua51-devel on
openSUSE > 12.1. The code is not yet ready for lua 5.2.
Sat Oct 22 14:00:00 2011 eugeneAATTnobilis.org.ru
- Fixed a run Zenmap as sudo in KDE and GNOME
Mon Oct 17 14:00:00 2011 crrodriguezAATTopensuse.org
- Update to nmap 5.61-xxx branch, changelog too long, see NEWS
for details.
- Add a new subpackage \"nping\"
- drop no-md2.patch already in upstream.
Wed Dec 1 13:00:00 2010 vcizekAATTnovell.com
- add nmap-5.21-gnomesu.patch (fixed bnc#613847)
Sat Oct 30 14:00:00 2010 malcolmlewisAATTopensuse.org
- spec file clean up to build on SLE and openSUSE < 11.3
Fri Aug 27 14:00:00 2010 anickaAATTsuse.cz
- update to 5.21
* Dramatically improved the version detection database, integrating
2,596 submissions that users contributed since February 3, 2009!
* bugfixes
Mon Apr 19 14:00:00 2010 meissnerAATTsuse.de
- disable md2 in the scripting language (no longer supplied
by default openssl)
Fri Oct 9 14:00:00 2009 anickaAATTsuse.cz
- fixed bnc#528581
Wed Aug 12 14:00:00 2009 cooloAATTnovell.com
- Pascal updated to 5.00 with way too many changes to list them,
see /usr/share/doc/packages/nmap/CHANGELOG
- introduce ncat and ndiff packages providing tools for nmap scans
Sun Aug 9 14:00:00 2009 cooloAATTnovell.com
- use new python macros
Tue Jun 23 14:00:00 2009 meissnerAATTsuse.de
- remove strip so we have debuginfos