Nmap Operating System Survey -- Remote host identification via TCP/IP Fingerpriting

Nmap Operating System Survey

For fun, I decided to test out the new remote OS detection capabilities of nmap to find out what OS was running on popular Internet security and educational sites, as well as a few sites of general interest. Later I decided to compare the nmap results with those from queso, another OS Fingerprinter. I have also added my own obnoxious comments :).

Target Host	Nmap says	Queso says	Comments
Hacker sites
www.l0pht.com	OpenBSD 2.2 - 2.4	FreeBSD, NetBSD, OpenBSD
insecure.org	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34
www.rhino9.ml.org	Windows 95/NT	Windoze 95/98/NT	No comment :)
www.technotronic.com	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34
www.2600.com	FreeBSD 2.2.6 - 3.0 Beta	FreeBSD, NetBSD, OpenBSD
www.kevinmitnick.com	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34	Free Kevin!
www.antionline.com	FreeBSD 2.2.6 - 3.0 Beta	FreeBSD, NetBSD, OpenBSD
www.rootshell.com	Linux 2.0.35	Linux 2.0.35 to 2.0.9999
Security vendors, consultants, etc.
www.repsec.com	Linux 2.0.35	Linux 2.0.35 to 2.0.9999 :)
www.iss.net	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34
www.checkpoint.com	Solaris 2.5 - 2.51	Solaris 2.x
www.infowar.com	Win95/NT	Windoze 95/98/NT
Vendor loyalty to their OS
www.li.org	Linux 2.0.35	Linux 2.0.35 to 2.0.9999 :)	Linux International
www.redhat.com	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34	I wonder what distribution :)
www.debian.org	Linux 2.0.35	Linux 2.0.35 to 2.0.9999 :)
www.linux.org	Linux 2.1.122	Reliant Unix from Siemens-Nixdorf
www.sgi.com	IRIX 6.2 - 6.4	IRIX 6.x
www.netbsd.org	NetBSD 1.3X	NetBSD 1.3.x
www.openbsd.org	Solaris 2.6	Solaris 2.x	Ahem :)
www.freebsd.org	FreeBSD 2.2.6-3.0 Beta	FreeBSD, NetBSD, OpenBSD
Ivy League
www.harvard.edu	Solaris 2.6	Solaris 2.x
www.yale.edu	Solaris 2.5 - 2.51	Standard: Solaris 2.x, Linux 2.1.???, MacOS
www.caltech.com	SunOS 4.1.2-4.1.4	Berkeley: usually SunOS 4.x, NexT, Annex	Hello! This is the 90's :). Actually this might be some sort of custom machine runing a stock Berkeley stack.
www.mit.edu	Solaris 2.5 - 2.51	Solaris 2.X	Coincidence that the good schools all seem to like Sun? Perhaps it is the 40% .edu discount :)
Lamer sites
www.aol.com	IRIX 6.2 - 6.4	IRIX 6.x	No wonder they are so insecure :)
www.happyhacker.org	OpenBSD 2.2-2.4	FreeBSD, NetBSD, OpenBSD	Sick of being owned, Carolyn? Even the most secure OS is useless in the hands of an incompetent admin.
Misc
www.lwn.net	Linux 2.0.31-34	Linux 1.3.xx, 2.0.0 to 2.0.34	This Linux news site rocks!
www.whitehouse.gov	IRIX 5.3	Berkeley: IRIX 5.x