Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: [NSE] 404 handling in http-default-accounts-fingerprints
From: George Chatzisofroniou <sophron () latthi com>
Date: Mon, 29 Jul 2013 18:54:03 +0300

On Sat, Jul 27, 2013 at 01:33:25AM +0000, nnposter () users sourceforge net wrote:
The following patch allows http-default-accounts-fingerprints.lua to
correctly handle cases where the response in try_http_post_login() is
HTTP/404. Without this patch such cases can be misinterpreted as
authentication successes due to the fact that the response does not
contain the validation string, such as "Invalid auth credentials!" or
"Login Error !!".

Applied as revision 31578.

George Chatzisofroniou
Sent through the dev mailing list
Archived at http://seclists.org/nmap-dev/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]