When using this command, the IP snort spits out is always the one given with
"-S", but in the /var/log/messages i can see a lookup for the real IP of the
machine which is doing the scan. So I don't really believe, that it's binding
another one. I tried to have a closer look in the headers with sno
> when you include spoofed addresses you should include a real ip address that
> you want a reply to come back to. man nmap for more information about using
> the decoy option.
Hmm. That's clear, but why does the "-S"-option work? When I use this option
together with the "-e" I get back the resu
Hi.
All my apologies to the people who have spent their time answering my question.
I've asked my question not precisely enough... (uuhm... oops)
What I really meant were the options "-S" and "-e". Why do I get answers from
machines I've scanned when using these options? Is my real IP-address inc
Hi all.
I hope anybody can help me with this little question. How is it possible to get
the scanning-results with nmap, when I spoof the address? I thought, that if a
computer gets a syn-packet or whatever, it sends its syn-ack or whatever back to
the ip which sent the syn or any other kind of pa
