[SOLVED] Allow outgoing nmap traffic in iptables

yzT! · 07-06-2014, 06:02 AM

Is it possible to allow Nmap through iptables as my user?

I'm aware of the owner module, but I don't want to create another user just to use nmap. I want to do it as myself, whilst also restricting the outgoing traffic. Otherwise I need to set the OUTPUT chain to ACCEPT, which is not so security compliant.

edit: I end up creating a new user specific for security tasks, not just nmap, so I'm using the owner module now

unSpawn · 07-06-2014, 04:23 PM

OK. Good it worked for you. Off of the 0-reply list now.

//FWIW: https://secwiki.org/w/Running_nmap_a...rivileged_user might be of interest as well (not firewall-related though).

yzT! · 07-06-2014, 05:36 PM

actually, if you want to use some scans like sS that should be done as well, otherwise sudo must be used, hence, running nmap as root and not the user.