Re: Chunked Encoding (bug?) in http.lua

[Joao Correa <joao () livewire com br>]

Hi Ron, Patrick, nmap-dev

The fix for pipeline requests with chunked encoding is almost fixed.
Actually I´ve finished coding it, and David helped me with testing it.
I´m travelling right now and that´s why I didn´t commit the code to
the main trunk so far. I´m really sorry about that, but next monday
I´ll be at home and I´ll do it.

If you guys are interested in testing it (what would be really great),
the fixed code is in nmap-exp/joao/experimental/. I´m not sure that
the version of the http.lua in this branch is the latest.

Thanks a lot guys,
João

On Sun, Sep 13, 2009 at 1:12 AM, Ron <ron () skullsecurity net> wrote:
> On 09/12/2009 10:35 PM, Patrick Donnelly wrote:
> > Hi list,
> >
> > I ran into this problem while trying to get the root webpage of
> > www.youtube.com (demo script attached):
> >
> > batrick@batbytes:~/nmap/svn/nmap$ ./nmap --datadir . -v -d -n -PN -p
> > 80 www.youtube.com --script chunked-test.nse
> > ...
>
> Hi Patrick,
>
> Although I'm not 100% sure about this particular error message, I can tell
> you that Nmap's chunked encoding is pretty buggy right now. Specifically,
> it's using regular expressions where it shouldn't be, and on occasion the
> wrong thing is being matched. Joao has been working on bringing it up to
> par, but it isn't quite ready yet.
>
> Ron
>
> _______________________________________________
> Sent through the nmap-dev mailing list
> http://cgi.insecure.org/mailman/listinfo/nmap-dev
> Archived at http://SecLists.Org

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org