Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Draft for hosted cgi

From: Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
Date: Thu, 25 May 2006 10:57:08 -0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Julien Delange wrote:

Yes. Actually, I think about using XML/RPC between clients and daemon. But
unfortunately, I think that it would take more time and I'm not sure to
finish it in august. In fact, I never use XML/RPC, but I think it's not so
difficult. I will think about it and make tests to know if I could include
it in the specifications.


There is a new whole dimension in HTTP-based attacks to applications that use XML-RPC. If you think
about using it, please do some research on vulnerabilities.

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar
My Linux and Security Blog at http://linux-consulting.buanzo.com.ar/

Romper un sistema de seguridad los acerca tanto a ser hackers como
encender autos puenteando los convierte en ingenieros automotrices.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEdbe0AlpOsGhXcE0RAvtTAJ4wNko0g28onfIKX8k2DFFkTo6YtwCcDRjp
cuE1BEunQIwmisKLrfKgtpI=
=eOJz
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Previous By Date Next
Previous By Thread Next

Current thread: