Is the command actually being run as the apache user? It looks to me like the same return:
[quote]bash-4.1$ snmpwalk -v2c -cattask 10.0.0.1 | head SNMPv2-MIB::sysDescr.0 = STRING: Brocade Communications Systems, Inc. Stacking System FCX648S-PREM, IronWare Version 07.2.02eT7f3 Compiled on Oct 12 2011 at 15:18:01 labeled as FCXR07202e SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.1991.1.3.48.2.4 DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (2746969004) 317 days, 22:28:10.04 SNMPv2-MIB::sysContact.0 = STRING: SNMPv2-MIB::sysName.0 = STRING: core SNMPv2-MIB::sysLocation.0 = STRING: AtTask Corporate Office SNMPv2-MIB::sysServices.0 = INTEGER: 6 SNMPv2-MIB::sysORLastChange.0 = Timeticks: (0) 0:00:00.00 SNMPv2-MIB::sysORID.1 = OID: SNMPv2-SMI::zeroDotZero SNMPv2-MIB::sysORDescr.1 = STRING:
By the logs, it looks to me like the string isn't even being passed along to the 'agent', otherwise, I think we'd see a failure rather than a false in the logs? Here's something interesting, however. When running nmap as the apache user, I see:
[code]bash-4.1$ nmap -n -sU -p161 10.0.0.1 You requested a scan type which requires root privileges. QUITTING![/code]
It must be the flags the script uses, because permissions on the /usr/bin/nmap file are 755. In fact, for whatever reason, it looks to me to be the -sU as I can run the -n (no DNS resolution) alone without problem.
_________________ ~R0cketman
Server Info: OS : CentOS 6.x Auditing: 1366 machines (and counting) LDAP: OpenLDAP
|