Home page logo

nmap-dev logo Nmap Development mailing list archives

ssh-hostkey enhancement
From: George Chatzisofroniou <sophron () latthi com>
Date: Tue, 17 Sep 2013 00:17:30 +0300

This enhancement makes a comparison with your known-hosts file. The
new part of the output looks like this:

22/tcp open  ssh     syn-ack
| ssh-hostkey: Key comparison with known_hosts file:
| GOOD Matches in known_hosts file:
| L7:
| L11: foo
| L15: bar
| L19: <unknown>
| WRONG Matches in known_hosts file:
| L3:

This behavior is enabled by default. You can turn it off by setting
the 'known-hosts' option to false.

The script is smart enough to know where to find your known hosts
file. It first checks the 'known-hosts-file' option. If it is not set,
it looks in the ssh config file and parses the "UserKnownHostsFile"
directive. If it can't find this directive, it simply looks for the
file in your ~/.ssh/ folder.

George Chatzisofroniou

Attachment: ssh1.lua

Attachment: ssh-hostkey.nse

Sent through the dev mailing list
Archived at http://seclists.org/nmap-dev/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]