mailing list archives
Re: [NSE] 404 handling in http-default-accounts-fingerprints
From: George Chatzisofroniou <sophron () latthi com>
Date: Mon, 29 Jul 2013 18:54:03 +0300
On Sat, Jul 27, 2013 at 01:33:25AM +0000, nnposter () users sourceforge net wrote:
The following patch allows http-default-accounts-fingerprints.lua to
correctly handle cases where the response in try_http_post_login() is
HTTP/404. Without this patch such cases can be misinterpreted as
authentication successes due to the fact that the response does not
contain the validation string, such as "Invalid auth credentials!" or
"Login Error !!".
Applied as revision 31578.
Sent through the dev mailing list
Archived at http://seclists.org/nmap-dev/