LogArchive2009

• Log archive 2007
• Log archive 2008

January 2009

• 1: Reproduced and fixed an error with getsysroutes that sometimes happened on Mac OS X. Tried not adjusting timing for ICMP destination unreachables that are not from the target.
• 2: Worked on integrating Patrick's patch to make scripts report when they begin and end. Improved some NSE documentation. Set a global ping host only when a host moves to the completed list. Restored the setting of the global ping host, which I had earlier inadvertently removed.
• 3: Removed nmap-perf-alt and moved its changes into nmap-perf. Made the code ignore timing from detrimental ICMP replies, and not make ping probes from such replies. Fixed some global ping code.
• 4: Tweaked when the max rate kicks in and when it is allowed to increase.
• 5: Implemented and tested an experimental technique to detect rate limiting by measuring changes in RTT. Had a meeting. Reverted all scan delay changes in nmap-perf for a merge.
• 6: Ran a big benchmark of the nmap-perf code to merge. Integrated Patrick's NSE debug output patch and made enhancements. Corresponded with MacPorts about ticket #17558.
• 7: Compiled benchmark statistics. Corresponded some more about ticket #17558. Wrote a report on the state of rate limit detection and asked for ideas. Found out why the scanme scans were still slow in the benchmarks: ping_magnifier wrongly set to 1.
• 8: Did 280 OS submissions. Compiled r11670 statistics. Merged nmap-perf.
• 9: Did 283 OS submissions and 31 corrections.
• 11: Wrote a script to summarize nmap-os-db changes. Wrote up OS detection highlights.
• 12: Answered a mailing list question. Wrote a script to visualize host congestion control versus global congestion control. Had a meeting. Documented some undocumented script arguments.
• 13: Investigated an --excludefile bug. Did a lot of web searching to see if Python can detect the native locale on Mac OS X. Wrote a section on Zenmap internationalization. Ran a benchmark testing if it pays to reset the response rate on scan delay increase.
• 14: Automated a screenshot for Zenmap translation. Added Maimon scan to Zenmap. Fixed a connect error on Windows. Started making notes on global congestion control. Did tests with sending pings more often, wrote up results at Performance notes#timing-pings.
• 15: Ran many tests with timing pings regulated by number of probes sent. Started evaluating Lua-based NSE. Wrote a preliminary review of nse-lua.
• 16: Ran a preliminary benchmark of nmap-perf r11744. Did tests with various timing ping variations. Wrote a detailed review of nse-lua.
• 18: Confirmed a potential for deadlock in nse-lua.
• 19: Compiled results of r11744 benchmarks. Looked up Ncat tricks. Had a meeting. Improved shortport.lua.
• 20: Added more results to r11744 benchmarks. Tested latest MacPorts. Modified handling of unknown host states in Ndiff output. Tested the changes from ticket #17558 and added another comment. Submitted another comment to ticket #15570. Wrote a section of the Ncat Users' Guide on emulating diagnostic services.
• 21: Wrote a patch to escape the time string in XML output but didn't commit it because I couldn't reproduce the invalid XML it may cause. Looked at jah's DNS resolution performance tweaks. Refactored a bunch of Ncat code. Tried the nmap-sctp branch.
• 22: Tested jah's DNS resolution patch and wrote comments. Defined _FORTIFY_SOURCE=2 in nmap, nbase, ncat, and nsock.
• 23: Fixed a bunch of null bytes being sent by Ncat's HTTP proxy mode. Started writing a test suite for HTTP proxy mode. Fixed a build race condition. Upgraded Windows build environment (Python, etc.). Had a meeting. Finished an Ncat guide section on file transfer. Helped debug the 4.85BETA1 release.
• 24: Added a new French Zenmap translation.
• 25: Updated the French translation. Answered some mailing list posts.

February 2009

• 1: Caught up on email. Answered a few mailing list questions.
• 2: Fixed a 4.85BETA2 Zenmap crash that happened when running a scan from the command wizard. Fixed a small bug in a Zenmap profile (-PN in Quick traceroute). Wrote a section on chatting with Ncat. Had a long meeting and helped to work out the Windows DLL problem. Debugged an assertion failure. Built nmap-4.85BETA3.dmg.
• 3: Submitted a new Ncat HTTP proxy service fingerprint. Tested a contributed timing patch. Debugged a GTK+ image loading problem. Tested how much Ndiff affects the Windows zip size. Slimmed down the Windows installer a bit and asked about slimming it further. Integrated a suggested patch to improve locale detection on Windows.
• 4: Tried building a MacPorts installation with Python 2.6. Wrote an external test suite for Ncat. Included Ndiff in the Windows zip distribution. Integrated and improved a patch to fix an overflow in ScanProgressMeter.
• 5: Wrote some more of the Ncat guide. Trimmed some more fat from the Windows installer. Made script documentation automatically include script arguments defined by modules. gettextized RadialNet.
• 6: Fixed a tricky DNS decoding bug in dns-zone-transfer.nse. Adjusted an OS fingerprint from a follow-up submission.
• 7: Fixed another bug in dns-zone-transfer.nse. Improved the efficiency of xml_convert.
• 8: Merged a new Croatian translation of Zenmap.
• 9: Created a nmap-rate-limit branch. Found a bug in the nbase ABS macro. Had a long meeting. Fixed the infinite recursion in dns-zone-transfer.nse. Fixed \f not being escaped in NSE output.
• 10: Wrote Ncat guide sections on access control, command execution, output, and SSL.
• 11: Merged a patch for timing.cc. Fixed the nbase ABS bug. Fixed the conditions for printing a timing estimate to match their intention. Investigated New Boundary issues.
• 12: Wrote Ncat guide sections on neat tricks, proxying, and all other undocumented options. Fixed various Ncat bugs that came up as I was writing. Used strftime to format dates and times in Zenmap.
• 13: Ran tests for a tryno patch. Made Ncat --send-only and --recv-only work with --listen.
• 14: Did a _FORTIFY_SOURCE benchmark. Wrote an nmap.sleep function. Fixed a book formatting problem.
• 16: Investigated EPERM errors but didn't find anything. Made a little change to NSE debug output. Revised the command execution section of the Ncat guide. Added a new Ncat trick suggested by Brandon. Had a meeting. Wrote an autostat patch.
• 17: Reworked sleep to go in the stdnse namespace. Wrote documentation for the autostats patch. Had a chat with Patrick about NSE library reorganization and difficulty with functions sharing upvalues across host groups.
• 18: Wrote a preliminary implementation of an allow/deny set for Ncat. Announced sleep for NSE. Investigated SSL support in old versions of Nessus.
• 19: Noted strange target specifications while testing the the Ncat allow/deny set. Wrote most of the allow/deny set.
• 20: Did some revision of device type categories. Finished and announced new syntax for Ncat --allow and --deny. Fixed a coding error to allow full-open octet ranges in IPv4 address specifications.
• 21: Fixed some portability problems with the new Ncat code. Added an experimental SEQ.CTI closed-port OS detection test.
• 22: Wrote a dns.lua debugging patch for Brandon in response to an assertion failure. Ran closed-port TCP IP ID tests.
• 23: Answered a bunch of mailing list questions. Documented new full-open octet ranges. Had a meeting. Committed stdnse.sleep. Committed --stats-every.
• 24: Fixed a bug where valid SEQ test results (currently just II) would be omitted if there wasn't enough information for SEQ.GCD and the other sequence tests. Added the new SEQ.CI test and documented it.
• 25: Fixed a little bug where G=N for perfect matches in OS detection. Changed GCD=<7 to GCD=1-5 in nmap-os-db and modified fingerfix to match. Worked a long time with Brandon working on mysterious NSE errors. Helped fix a service probe entry that caused an assertion failure.
• 26: Found a reproduction procedure for at least one class of NSE errors. WOrked more with Brandon on debugging the problems. Did a security audit of Ncat proxy mode. Fixed a base64 encoding error.
• 27: Investigated non-blocking read from stdin on Windows. Increased the DNS decompression limit in dns.lua. More debugging with Brandon. Created an nmap-nse-debug branch. Enhanced Ncat HTTP proxy to do more careful processing of the request and require a destination port.
• Fixed a problem where an Ncat HTTP proxy would die after being port scanned.

March 2009

• 1: Did more debugging on NSE errors. Wrote a reference-checking patch. Found a bug that might be the cause of NSE errors. Wrote a test patch for it in nmap-nse-debug. Wrote ideas for Ncat on Windows: stdin read, --exec. Made a little fix to http.lua.
• 2: Reviewed an SSL patch and offered a suggestion. Made some small revisions to the Ncat guide. Had a long meeting. Changed --talk to --chat.
• 3: Fixed SSL/"unknown" inconsistencies in output. Fixed one tricky WRITE TIMEOUT error in Ncat (actually Nsock). Fixed two other write timeout errors. Uncommented a section of the Ncat guide (on transfering a disk image) that works now.
• 4: Implemented non-blocking read from stdin on Windows.
• 9: Fixed a little Zenmap crash (illegal format characters like %y). Checked out the code for the IE.DLI test. Investigated a memory access problem with --excludefile. Had a meeting. Wrote new tests for --allowfile and --denyfile and SSL. Fixed Ncat debug output being mixed up with --exec output. Did escaping of control characters with --chat.
• 10: Fixed an Ndiff PyXML bug. Wrote up year one in summary. Fixed unintentional denials of service against Ncat. Made --chat announce when someone enters or leaves.
• 11: Made Ncat build --without-openssl again. Made Ncat --exec and --sh-exec work on Windows. Fixed a 100% CPU usage Ncat bug. Debugged with Brandon Valgrind issues.
• 12: Submitted a dental alignment for the ASCII dragon. Adjusted the layout of the Ncat guide. Looked for other non-diverse OS detection tests. Experimented with different Ndiff output formats.
• 13: Fixed a few miscellaneous Zenmap bugs. Started making Ndiff handle version information. Had a meeting. Discovered that --exec on Windows didn't work when spawning another Ncat. Started trying to fix it.
• 14: Made --exec work on Windows when spawning another Ncat.
• 15: Helped with the 4.85BETA4 release. Fixed a route finding bug on systems with sockaddr.sa_len. Worked on handouts for my talk.
• 16: Made Ndiff include version scan information in its output. Had a meeting.
• 17: Made Ndiff include OS information in its output. Reviewed a patch.
• 18: Made the Ncat Windows exec mechanism use exclusion to keep multiple threads from accessing the same data concurrently. Fixed Windows not closing the socket when I expected it to. Did a talk at my college's security class. Created a private branch for Ndiff output.
• 23: Added an Ncat trick. Started reviewing nse-lua-merge.
• 24: Fixed a Zenmap drawing issue. Cleared out some mailing list messages.
• 25: Did lots of work in my private ndiff branch.
• 26: Tested and integrated a patch for better UDP --exec and --sh-exec in Ncat. Updated documentation to reflect the new change. Announced Ndiff mark II. Reviewed nse_main.lua.
• 27: Wrote tests for Ncat --max-conns. Discussed the difficulties of implementing some Ncat UDP features. Did janitorial work in Ncat. Toned down Nsock tracing. Removed useless OS detection tests: U1.RUL, IE.DLI, and IE.SI.
• 28: Repeated Patrick's nse-lua-merge performance tests.
• 29: Looked at the new Conficker detection method, but couldn't help much.
• 30: Made NSEDoc include links to script and module source code. Helped with the 4.85BETA5 release. Reviewed an nmap-service-probes SSL patch. Fixed a search bug in Zenmap. Had a meeting. Removed obsolete tests from nmap-os-db and fingerfix. Worked on XML output for Ndiff. Fix the truncation of --script arguments in log files. Helped with the 4.85BETA5 release.
• 31: Further tested and integrated an SSL version detection patch. Fixed a ping scan statistics output problem. Added RTT estimates to output. Redirected download links to a working location. Fixed miscellaneous Zenmap bugs. Helped with the 4.85BETA6 release.

April 2009

• 1: Reviewed an NSE script. Investigated an OpenSSL assertion failure. Wrote most of the infrastructure for server-mode --proxy-auth in Ncat. Wrote helpful error messages for the Conficker script, as it turns out incorrectly. Helped with the 4.85BETA7 release.
• 2: Discovered my error in smb-check-vulns.nse help text. Finished implementing proxy auth in Ncat. Asked for help in testing it for security. Found an explanation for a supposed massping problem. Checked out a hard crash in Windows Zenmap and found a workaround. Checked out an anomaly in the U1.RUD test. Dug through some old email.
• 3: Fixed an unknown port state Zenmap bug. Fixed a Windows crash and added to a GTK+ bug report. Added size limits to Ncat's proxy data structures.
• 4: Did some more of Zenmap Ndiff work. Tried to update the MacPorts installation. Created MacPorts ticket #19177.
• 6: Merged Ncat proxy authentication. Had a meeting. Figured out the purpose of a magic table in Conficker port generation code.
• 7: Redocumented the U1.RUD test. Scored all the Summer of Code applications. Wrote to prospective Summer of Code students.
• 8: More work on Zenmap diff viewing. Had a meeting to discuss Summer of Code applications.
• 9: Did OS detection and host states in Zenmap diff viewer. Read part of my OpenSSL book. Wrote an alternative diff viewer that just shows the plain text. Asked for opinions in Zenmap diff viewing.
• 10: Merged the new Zenmap diff viewer. Wrote tests for GET proxy. Refactored ncat_listen.c.
• 13: Made Ncat parse URIs, parse headers, and remove hop-by-hop headers. Had a meeting.
• 14: Finished implementing the GET method in Ncat web proxy. Had a meeting to finalize Summer of Code applications. Wrote to those who will likely be accepted.
• 15: Implemented HEAD in Ncat web proxy. Rearranged the code. Checked for proxy loops.
• 16: Implemented POST in the HTTP proxy. Merged new web proxy. Wrote a 32-bit multiplication in Lua for Ron.
• 17: Created an nsock-ssl branch for certificate verification. Required certificate verification and disallowed weak ciphers.
• 18: Created an ncat-ssl branch for better SSL support in Ncat. Enabled certificate verification and made other changes to facilitate it.
• 20: Toned down the "whacked packet protocol" message. Improved an error message in Ndiff setup.py. Started reviewing a patch for Boolean operators in script selection. Had a meeting. Sent welcome letters to Summer of Code students.
• 21: Wrote Summer of Code regret letters. Added --ssl-verify. Made Ncat print certificate fingerprints on verification errors. Built nmap-4.85BETA8.dmg.
• 22: Redid most of the Nsock/Ncat SSL changes. Did domain name verification. Added tests for verification.
• 23: Researched about safely seeding the OpenSSL PRNG. Added assertions checking for enough entropy. Made the Ncat server use only secure ciphers. Updated Ncat guide for secure SSL.
• 24: Did dNSName certificate matching. Wrote a review of a patch for Boolean operators in script selection. Merged secure SSL connections in Ncat. Sent books to Patrick and Josh.
• 26: Sent a book to Venkat.
• 27: Started making a list of hosts for ping scan benchmarking but ran into NSE deadlocks.
• 28: Researched whether to install Microsoft or Mozilla CA certificates. Read about potential copyright and licensing of CA bundles. Made Ncat install and use Microsoft's trust store.
• 29: Fixed compiler warnings with Visual C++. Started working on Criston crash problems.
• 30: Found the cause of one Criston crash (the one with 4.76). Tested a getaddrinfo patch. Analyzed a packet trace.

May 2009

• 1: Found a bug in whois.nse and reported it to the author.
• 3: Had an NSE meeting with Patrick. Helped ithilgore with a linking problem.
• 4: Further Criston debugging. Fixed bugs preventing me from making a list of hosts for ping benchmarks. Make a list of hosts and ran a preliminary benchmark.
• 5: Reviewed script argument Boolean expressions. Reviewed and overhauled the "Usage and Examples" section of scripting.xml. Updated Zenmap figures. Had a meeting. Summarized initial ping scan benchmark. Improved the ping benchmark analysis scripts.
• 6: Ran whois scans for ping benchmarking. Made a Zenmap throbber.
• 7: Did automatic temporary key generation in Ncat. Rewrote the Ncat HTTP server with Nsock in a test branch. Made Nsock able to handle listening connections.
• 8: Made the Ncat HTTP proxy run on Windows. Sent ping probe nmap-bench to Fyodor and did my own scans. Removed the Zenmap command wizard.
• 9: Did all 1,156 OS submissions and 50 corrections. Wrote up highlights. Scheduled Summer of Code planning meetings.
• 10: Did UDP payload scans. Got accepted for LinuxTag.
• 11: Had a scheduling meeting with Venkat. Updated an error message.
• 12: Had a scheduling meeting with Josh. Reviewed a patch and fixed an Ncat bug with address format parsing. Had a meeting. Assigned the SEQ.CI test a MatchPoints of 50. Removed rounding of runlevels in NSE.
• 23: Started tearing through email.
• 24: Reviewed a bugfix patch. Tested SCTP INIT ping. Fixed some Zenmap and Ndiff bugs. Helped Venkat with OpenSSL.
• 25: Helped debug iPhone compilation. Juiced the nmap-payloads branch for more flexibility. Made another round of ping probe tests, ran them, and started analysis. Wrote a much faster ping probe analysis program. Corresponded with Summer of Code students.
• 26: Wrote analysis of the latest ping probe tests. Had a weekly meeting, an NSE meeting, and a meeting with Patrick. Wrote a match line for Ncat chat. Tested an open proxy script. Investigated --defeat-rst-ratelimit brokenness.
• 27: Did no-ACK-filtering, no-SCTP ping probe analysis. Effected the new default ping and documentation changes. Found and fixed a bug in the handling of ICMP replies.
• 28: Had a scheduling meeting with Josh. Evaluated the latest version of Patrick's --script-args patch. Updated the book section on the best ping probes.
• 29: Revised new --script-args patch documentation. Tried rebuilding latest MacPorts, but failed because of updates. Did sanity check ping probe scans. Updated some other sections of the book for new default ping probes. Made Ncat report about SSL connections.

June 2009

• 1: Did analysis of a sanity check scan of ping probes. Reviewed the open-proxy.nse scripts. Tested Ncat losing bytes due to buffering.
• 2: Tested an NSE resource cleanup patch. had a meeting with Fyodor and an NSE meeting. Merged the "Save Topology" patch.
• 3: Really researched newline handling on Windows and produced a patch. Wrote another patch for RadialNet saving file type selection.
• 4: Checked out mysterious order-dependent host discovery issue. Had a planning meeting with Josh. Wrote a test patch for Ncat EOF handling and wrote EOF tests.
• 5: Committed a better fix for RadialNet saving file type selection. Evaluated a patch by Josh. Fixed Ncat compilation with old versions of OpenSSL. Tested an imap-capabilities.nse script. Tried the NSE child coroutines patch.
• 6: Made a branch for Ncat EOF issues. Wrote thanks to biggest OS contributors.
• 7: Fixed image loading in the Mac package. Wrote a --keep-open option for Ncat. Fixed SSL in listen mode on BSD.
• 8: Analyzed the NSE child coroutines patch. Merged an output patch.
• 9: Evaluated the newest versions of the open proxy scripts. Committed the change to Ncat listen mode (one connection only). Had a meeting and an NSE meeting.
• 10: Ignored SIGPIPE in Ncat listen to make the chargen example work. Updated the Ncat guide for the new default behavior of --listen and the --keep-open option. Fixed --send-only in connect mode on Windows by enhancing fselect.
• 11: Found the cause of host order–dependent behavior in ping scan. Had a meeting with Josh.
• 12: Tried the SCTP scanme server. Abbreviated Ncat's presentation of SSL fingerprints. Made Zenmap work without pysqlite 2. Helped with the 4.85BETA10 release. Investigated some old NSE errors. Debugged gh_list with Brandon. Posted an analysis of buffering problems in ssh2.lua.
• 13: Reviewed a patch by Venkat.
• 14: Submitted a build of 4.85BETA10 to Coverity. Fixed an invalid memory access in --exclude loading.
• 15: Worked on Ncat using 100% CPU with SSL sometimes. Debugged gh_list problems with Brandon. Talked with Venkat. Started building a new libc to see if it would help with Coverity results.
• 16: Reviewed an ssh2.lua buffer patch. Had a meeting. Had an NSE meeting. Worked more on Ncat using 100% CPU.
• 17: Reviewed Josh's patch to add the SCTP options to Zenmap. Merged a cross-compiling patch. Put copyright notices at the top of Ncat files. Had a quick meeting with Patrick about NSE performance. Had a meeting with Venkat about Nsock SSL connections. Cleared some cruft out of Nsock.
• 18: Had a meeting with Josh. Spent most of the day solving a hang in Zenmap on OS X.
• 19: Finished a patch to fix Ncat using 100% CPU and posted it. Read about select replacements and posted a summary.
• 22: Reviewed an Nsock SSL patch by Venkat. Tried to reproduce an argument splitting problem on Windows. Researched VMware Fusion problems.
• 23–26: LinuxTag.
• 29: Evaluated some patches and old mailing list posts. Extracted audio from the LinuxTag talk. Suggested a solution for BSD make compatibility.
• 30: Evaluated a patch. Answered some mailing list posts. Encoded a LinuxTag video. Ran NSE performance scans for Patrick but ran into a deadlock. Had a meeting and an NSE meeting. Made a new Coverity build with an older version of GCC and submitted it. Categorized the new Coverity issues.

July 2009

• 1: Tried an SCTP scan with a different modem. Ran another NSE performance scan for Patrick, this time trying to find the cause of a deadlock. Tested on Windows. Made mockups of how I see Zenmap host filtering.
• 2: Evaluated a memory leak fix patch by Josh. Had a meeting with Josh. Tested on Mac OS X. Helped diagnose a bug in http.lua. Investigated a --packet-trace bug on OS X. Tested Windows zip file.
• 3: Tested RPM files. Fixed the --packet-trace bug on BSD. Committed a fix for Ncat using 100% with SSL. Polished up UDP payloads and asked for help with probe selection. Submitted some version fingerprints for the new Zoom modem.
• 5: Helped build another release.
• 6: Tested the safety of UDP payload probes. Checked whether Microsoft's NetBIOS implementation is vulnerable to the DNS decompression vulnerability; it seems not to be. Merged UDP payload probes. Wrote an http-date.nse script. Had an NSE meeting.
• 7: Tested a patch. Reviewed a cmdline_split patch by Josh. Added dependency generation to the Nsock makefile. Ran an nse_nsock_perf test for Patrick. Tested on Windows. Had a meeting. Did Google midterm surveys. Make Ncat --broker imply --listen.
• 8: Fixed chunked transfer encoding in http.lua. Ran another nse_nsock_perf test for Patrick, no hang this time. Solved an interesting bug that was revealed by an overlapping memcpy. Refactored getinterfaces. Reviewed an Ncat test patch by Josh.
• 9: Had a meeting with Josh. Consulted with Venkat and Brandon. Wrote a patch for automatic verbosity increase for scripts selected by name.
• 10: Helped troubleshoot NSE development problems. Tested Ncat with SCTP. Submitted the NSE verbosity patch. Posted ideas for NSE without ping and port scanning. Made Ncat print an error message by default on connection error. Fixed Ncat --broker with SSL using 100% CPU by modifying a submitted patch. Evaluated a PJL script.
• 11: Had a long meeting with Venkat to merge back some of his branch changes.
• 12: Applied the NSE verbosity patch. Checked ncat-sctp branch on Linux. Found the cause of an fixed a bug where some local Nsock SSL connections were unencrypted.
• 13: Fixed an assertion failure that was revealed by the fixing of other bugs. Helped test Josh's new filtering code. Committed my very first NSE script: http-date.nse. Helped debug script development. Met with Brandon and solved some more assertion failures.
• 14: Tried to find a way to test the Ncrack SSH module without creating real users. Had a meeting with Fyodor. Had a meeting for NSE. Started running a Windows NSE performance benchmark.
• 15: Ran another Windows NSE performance benchmark. Had a meeting with Venkat and made some changes to Ncat SSL wildcard code. Wrote instructions to Venkat to make a certification authority. Audited the old Coverity errors to see if any were actually valid; one was. Fixed RPC scan.
• 16: Had a meeting with Josh. Met with Venkat about certificate generation. Improved the Ndiff manual page. Documented UDP payloads. Added the pjl-ready-message.nse script.
• 17: Found the real source of zenmap-filter slowness. Removed extraports inference from Ndiff for a speed increase. Made -PN -sP work. Removed the fatal error when --scan-delay and --max-parallelism are used together.
• 18: Removed the "Linux goofiness" socket writability test. Made -Pn and -sn synonyms for -PN and -sP.
• 19: Tested on Openwall.
• 20: Wrote a patch for receiving broadcast ARP replies. Edited the man page for Solaris compatibility. Helped Venkat with a newer SSL fallback patch. Fixed error handling of FireWire devices. Wrote a favicon script.
• 21: Solved the "socket operation on non-socket" error on Windows. Had a planning meeting with Fyodor. Had an NSE meeting. Tested a typecast patch. Wrote about strict aliasing. Ran a Windows script benchmark for Patrick.
• 22: Committed a fix for broadcast ARP replies. Wrote a summary of possible UDP payloads. Had a meeting with Venkat. Ran another Coverity build.
• 23: Had a meeting with Josh. Helped Venkat with SSL issues. Worked on merging the Ncat SCTP branch.
• 24: Finally got ncat-test.pl under control. Merged the SCTP branches. Added a help button to the Zenmap filter bar.
• 25: Answered some mailing list questions.
• 26: Wrote a test program for Ncat SSL wildcard matching.
• 27: Thought about ways to solve the ctype.h signed char problem. Evaluated a route patch. Answered a ton of mailing list messages.
• 28: Had a meeting with Fyodor. Fix a bug in getinterfaces_siocgifconf that Fyodor found. Had an NSE meeting.
• 29: Made traceroute guess a probe and wrote a patch to improve it against non-responsive hosts. Had a meeting with Venkat. Fixed the exit codes of Ncat, wrote tests and documentation.
• 30: Fixed the exit codes of Ndiff, wrote tests and documentation. Documented SCTP in the Ncat guide. Documented host filtering in the Zenmap guide.
• 31: Sold books at Defcon.

August 2009

• 3: Tried and failed to make an SSL certificate with exponential wildcard name matching time.
• 4: Answered some mailing list questions. Had a meeting and an NSE meeting. Posted my favicon survey script.
• 5: Helped Brandon debug file handle leaks in comm.tryssl. Had a meeting with Venkat. Ran Windows -sV benchmarks.
• 6: Posted ssl-cert.nse. Evaluated an --excludefile patch. Wrote a favicon viewer. Had a meeting with Venkat. Made some small improvements to traceroute. Fixed some compilation warnings in libdnet.
• 7: Made a sample favicon visualization. Worked out the kinks in an Ncrack Mac package. Tested Ncrack and found a couple of bugs.
• 8: Worked on a favicon graphic generator.
• 10: Merged the x11-access.nse script. Posted Wireshark dissection of UDP payloads.
• 11: Built a Mac package of Ncrack 0.01ALPHA. Had a meeting an an NSE meeting. Helped Luis with Autoconf. Started looking into a problem with the installer on Windows 7. Evaluated an HTTP caching patch from Patrick. Read the rough draft of Venkat's Nsock buffer proposal.
• 12: Had a meeting with Venkat. Added an "Ncat: " prefix to all of Ncat's messages. Massively refactored ncat_connect.c. Fixed --idle-timeout in Ncat.
• 13: Had a meeting with Josh. Made a version-revealing test WinPcap installer for Windows 7. Merged ssl-cert.nse. Tested a problem with the Windows shell in Zenmap. Tested Windows Ncat EOF.
• 14: Proposed a DNS-SD version probe. Added a bunch of UDP payloads: xdmcp, route, dns-sd, isakmp.
• 15: Improved efficiency in the favicon graphic generator.
• 16: Evaluated a patch to list active scripts from Patrick. Improved efficiency in the favicon generator.
• 17: Evaluated some HTTP caching results. Evaluated Nsock poll profiling results from Josh. Added UDP payloads for radius, sunrpc, and nfs. Added tight packing and square output to the favicon generator.
• 18: Identified some favicons. Found the cause of HTTP pipelining errors. Had a meeting and an NSE meeting. Added the DNS-SD version probe. Made a new favicon for the insecure.org sites. Helped Ron find a socket leak in Nsock. Updated config.sub and config.guess.
• 19: Added and UDP payload for amanda. Wrote a summary of UDP payloads. Checked out another problem having to do with Zenmap and the Windows shell. Refactored some traceroute code.
• 20: Integrated a Russian Zenmap translation. Built a Mac package of Nping 0.1BETA2. Made an nsock_loop_quit function and used it to nicen the ncat_connect.c exit code. Fixed an off-by-one error in traceroute consolidation code. Made traceroute set the distance to the target.
• 21: Made sockaddr_u to fix aliasing errors in Ncat.
• 22: Checked out an FD_SETSIZE patch.
• 23: Added a SEQ.DC OS test. Evaluated some more Nsock poll profiling data from Josh. Made new installers for Windows 7 compatibility.
• 24: Evaluated and categorized Coverity results. Fixed all the easy ones.
• 25: Evaluated a new hexdump function. Had a meeting. Rewrote the certificate wildcard matcher. Added another wildcard test.
• 26: Answered some mailing list questions. Tested Ncrack XML input and found some bugs. Made host and service selection in Zenmap persist across inventory changes.
• 27: Added Brandon's PJL version probes. Posted an idea for a DNS-SD script. Fixed a problem with refreshing results with persistent host and service selection. Documented criteria for device types.
• 28: Wrote a patch for NetBSD that didn't fix the problem. Discussed forward DNS names in output. Made the device types in nmap-os-db and nmap-service-probes match the new definitions. Fixed a Coverity error.
• 29: Fixed a Coverity error and categorized the defects in liblua and libpcre. Tested Venkat's Digest authentication branch.
• 31: Made a document to test HTTP pipelining. Fixed some compiler warnings. Fixed a compiler error on NetBSD. Made the nselib/data directory start installing. Made a branch for traceroute enhancements.

September 2009

• 1: Fixed a makefile error on NetBSD. Made the traceroute branch print out stats of packets sent.
• 2: Helped check out Coverity defects. Wrote an initial Python prototype of traceroute. Had a meeting.
• 3: Tried to figure out the cause of the web site outage. Ported the traceroute prototype to send live probes.
• 4: Sent a script to Summer of Code students to help them make their code samples. Checked out some more Coverity fixes. Made a local branch to work on while the Subversion server was down. Made traceroute hops get stored in the Target structure.
• 5: Built a procedural interface around traceroute.
• 7: Committed changes that had been waiting for the Subversion server to come back up. Started writing the new C++ traceroute with ICMP only.
• 8: Presented a Python prototype of a new traceroute algorithm. Had a meeting. Made some refinements to it. Investigated ARP ping not working. Did more work on the C++ traceroute: RTT recording, timeouts.
• 9: Figured out that ARP ping was already fixed. Did more work on the traceroute prototype. Committed a C++ version of the prototype.
• 10: Fixed uptime calculation for targets with slow timestamp frequencies. Worked on the C++ traceroute.
• 11: Did name resolution in traceroute and other fixes and enhancements.
• 12: Started filling in the missing details of traceroute: hop distance setting, retransmission, scan delay, progress meter, TCP and UDP probes.
• 13: Added SCTP and IP protocol probes to traceroute. Made UDP traceroute probes use payloads. Tested an HTTP script. Announced the new traceroute.
• 14: Clarified some NSE documentation. Started setting up Tor and proxychains and doing research about proxy scanning. Made an nmap-proxy branch.
• 15: Did more research about proxy scanning. Had a meeting.
• 16: Merged the new traceroute. Had a meeting about mailing lists.
• 17: Answered questions about getting started with development. Made a summary of mailing list archivers. Made some little enhancements to traceroute.
• 21: Did a first iteration of an MHonArc installation.
• 22: Had a meeting. Did a second iteration of MHonArc, with page templates. Made MHonArc generate RSS. Identified an Ncat bug with --max-conns. Answered mailing list questions. Moved new MHonArc scripts to a final installation directory.
• 23: Made the RSS feeds look better by stripping quotes. Made a patch to fix a traceroute bug.
• 24: Figured out an OS detection crash, that it had already been solved. Worked on keeping mailing list archive numbers in sync.
• 25: Made message processing faster. Did more matching of archive numbers. Made an HTML display of latest posts. Adjusted the output some.
• 26: Made attachment naming and content type guessing work in the new archives. Did more synchronization of message numbers. Made message URLs shorter.
• 27: Integrated an update to the French Zenmap translation. Checked out down hosts not being reported. Added "Previous period" and "Next period" links and code to support them.
• 28: Made a last few changes for compatibility of message numbers between Hypermail and MHonArc.
• 30: Migrated to the new mailing lists. Made some cosmetic and functional fixes.

October 2009

• 1: Tried the ioerror nmap-proxy branch. Moved the new seclists out of /new. Added a CGI handler for individual lists. Did latest posts JavaScript. Did CSS for message excerpts.
• 2: Allowed the latest posts to reach into the previous period. Added some more page links.
• 3: Tested the PJL probe.
• 5: Wrote a suggestion for client counting on Windows. Reworked the CSS for the seclists calendars. Added the nanog, oss-sec, metasploit, funsec, snort, tcpdump, interesting-people, wireshark, and cert lists. Added author indexes.
• 6: Did inline list styling on mailing list links. Added "All Lists" links and an up arrow icon.
• 7: Made most mailing list logos. Wrote the code to handle them.
• 8: Adjusted some logo rendering. Learned about signal handling. Scrapped some obsolete Ncat wrapper functions. Fixed child counting on Windows.
• 9: Wrote a patch for SIGCHLD handling. Fixed proxy connections on Windows. Made some correctness changes to Windows Ncat child management. Reorganized and corrected Ncat proxy connection code.
• 10: Ran first nmap-token tests.
• 11: Ran nmap-token tests. Wrote nmap.bind. Commented on a ssl-cert.nse patch. Tested nmap-smb. Solved an interesting Zenmap encoding bug. Added the FD_SETSIZE checking patch. FIxed Nsock tracing of IPv6 addresses.
• 12: Made list pages statically generated. Fixed 100% CPU usage with ncat -l --send-only.
• 13: Added search boxes to seclists pages. Added more buttons to index pages. Tweaked some seclists rendering. Had a meeting.
• 14: Ran nmap-token tests.
• 15: Added the dataloss list. Added begin and end links to index pages. Tested Ndiff with the scans reported to cause a core dump. Tried to find a way to listen for broadcast packets in NSE. Continued to help troubleshoot OS X 10.6. Made an nmap-token branch.
• 21: Installed the old nanog archives from irbs.net. Fixed a compile error.
• 22: Had a meeting. Wrote Summer of Code summaries.
• 23: Rewrote the Ncat wildcard tests and added a null-prefix test. Added user-set host names to XML output. Wrote a patch for testing Snow Leopard problems. Fixed a date parsing bug in ssl-cert.nse.
• 25: Reproduced an Nping assertion failure.
• 26: Built a copy of the WinPcap installer. Implemented forward DNS names in normal output. Ran an nmap-token benchmark.
• 27: Ran an nmap-token benchmark. Upgraded to libpcap 1.0.0.
• 28: Added a --confdir option to Zenmap. Fixed packet.in_cksum. Added the confdir option to Zenmap. Wrote an initial patch for down hosts in XML output. Ran an nmap-token benchmark.
• 29: Ran more variations on the nmap-token test.
• 30: Got a copy of OS X 10.6 and installed it. Ran nmap-token tests with reduced source port ranges.

November 2009

• 1: Made small adjustments to the favicon graphic generator.
• 2: Admitted a mistake in earlier testing. Changed to strict tryno equality testing. Changed tryno and pingseq encoding in ACK probes. Added extra checks to TCP port matching, to reduce the change a SYN will be matched with an ACK or vice versa. Ran an nmap-token test.
• 3: Fixed a setup.py error. Had a meeting. Made adjustments to the favicon graphic. Posted the favicon graphic.
• 4: Removed allow_ipid_match. Added SCTP vtag probe matching.
• 5: Installed translated man pages. Tested the OS X 10.6 hang.
• 6: Wrote an implementation sketch for Ncat caretaker processes.
• 7: Diagnosed Mac OS X 10.6 troubles.
• 8: Added color bias to the favicon graphic.
• 9: Fixed Host port numbers. Made suggestions on script dependencies. Got a first version of the favicon graphic.
• 10: Had a meeting. Documented LINGUAS etc.
• 11: Fixed a loop in get_rpc_results. Did 300 OS submissions. Opened bpf devices in read/write mode on BSD to work around a weird error in Mac OS X. Made MAC database loading faster.
• 12: Made a sample for psexec installation. Did 500 OS submissions.
• 13: Did 549 OS submissions and 81 corrections.
• 14: Wrote OS detection highlights. Wrote more tests for SSL connections in Ncat and made a definition for "most specific".
• 16: Added host latency to XML for ping scan. Changed the retransmission limit warning.
• 17: Fixed --exclude assertion failures. Had a meeting. Fixed Luadoc handling of C functions without \@param tags.
• 18: Tested the WinPcap installer. Deleted obsolete script files. Fixed some tables in the book. Used the trick of peeking inside an ARP packet in the doArp function as well. Added tests for -p in Ncat.
• 19: Posted an initial review of Memory use by Port objects. Added distribution files to the favicon programs. Published the programs.
• 20: Debugged an NSE hang with Brandon. Made an nmap-mem branch for memory reduction efforts. Tested Memory#a20091120.
• 22: Did unique storage of strings in reading nmap-os-db. Memory#a20091121.
• 23: Posted a Bash completion example. Debugged an NSE hang with Brandon. Refactored nmap-os-db parsing and did more memory use reductions. Memory#a20091123.
• 24: Fixed a problem with the German translation. Had a meeting. Helped fix an NSE socket lock hang. Made a sample Bash completion file.
• 25: Applied a Citrix service probes patch. Wrote desiderata for a UDP payloads data file. Added a contributed SIP version probe.
• 26: Reviewed Citrix and NFS scripts. Worked on abstracting Port and PortList.
• 27: Did some more PortList changes and testing. Adjusted the favicon survey script to have a retrieval limit.
• November 20–December 11 in New Zealand.

December 2009

• 12: Caught up on email. Fixed a bug in HTTP body encoding and evaluated a POST patch. Tested setting the host name from UDP service probes. Improved and committed an NTP script.
• 13: Investigated why --help doesn't work for Zenmap on Windows. Fixed a bug in ASN.1 encoding in the snmp library. Committed Citrix scripts.
• 14: Had a meeting. Continued changing the interface of Port for memory purposes. Did dynamic allocation of service information. Helped Brandon with the favicon survey script.
• 15: Checked out a Kerberos service probe. Ran a memory benchmark.
• 16: Made nonresponsive ports not allocate anything and use a default state. Ran a memory benchmark.
• 17: Ran benchmarks of memory use. Made some final changes to of the nmap-mem code. Had a meeting to discuss version detection integration.
• 18: Allowed nonresponsive probes to have an effect in ping scan, unlike port scan. Made some code changes to facilitate version integration. Did imap version submissions.
• 19: Committed the nmap-mem branch. Made a handful of other small memory improvements. Tweaked service programs some more.
• 20: Tested libneon and found that it's not really vulnerable to a null prefix an a subjectAltName. Tried installing OS X 10.6 again. Tested the O_WRONLY bug on OS X 10.6.2, and found that it had been fixed.
• 21: Evaluated a patch. Made a little change to the NTP script. Installed OS X 10.6, finally the way I want it. Tested a Kerberos probe. Did pop3 and afp service submissions.
• 22: Committed the Kerberos service probe. Set the source address in unprivileged scans in Nping.
• 23: Wrote a program to convert service fingerprints to pcap files. Did some service submissions.
• 24: Worked on http service submissions. Helped with the 5.10BETA2 release.
• 26: Finished http service submissions.
• 27: Evaluated the script dependencies patch.
• 28: Added oracle-sid-brute.nse. Did a batch of miscellaneous service submissions.
• 29: Did another batch of miscellaneous service submissions.
• 30: Did the last of the service submissions. Committed my service integration helper tools.
• 31: Did all the service corrections. Wrote version detection highlights. Added a new service match. Gave LANG primacy in Zenmap language selection. Fixed psexec installation on Windows.