Nmap Development mailing list archives
Re: [NSE][PATCH] only show script errors in verbose mode
From: Sven Klemm <sven () c3d2 de>
Date: Wed, 24 Sep 2008 10:03:07 +0200
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Fyodor wrote: |> I think this is an acceptable solution, though of course others are |> welcome to share their opinion. I do think that this needs to be |> documented in scripting.xml, that require errors are a special case of |> errors that are silently ignored. | | Hi David. I agree that this patch looks promising. Though I have a | concern which as expressed in a post by Diman last night related to a | different proposed solution. If someone tries to run a script, and | the required libraries can't be found (like bit, or shortport, or | maybe a more specific one like pop3 related to their script), they | probably won't notice the problem. Ignoring errors is a bit | dangerous, so I think we should tailor the ignore rule pretty closely. | | Yesterday Sven checked in some code to his nmap-exp which modified | SSH-hostkey like this: | | -portrule = shortport.port_or_service(22, "ssh") | +if nmap.have_ssl() then | + require("openssl") | + portrule = shortport.port_or_service(22, "ssh") | +else | + portrule = function() return false end | +end | | I think this approach warrants some consideration since it is | specifically targetted, and does not rely on special case "magic" | behavior. On the other hand, it puts more of a burden on script | writers than Patrick's patch. So I'm fine with whatever solution | David decides on. I agree that the ignore-require-errors approach | needs to be documented if we use that. I am wondering whether we need to suppress those error messages at all. Since --script-updatedb now skips scripts it cannot load the user can get rid of those error messages by regenerating script.db. Cheers, Sven - -- Sven Klemm http://cthulhu.c3d2.de/~sven/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkjZ9DsACgkQevlgTHEIT4a5JgCfcBGTOhEfuNyZc+bHFiw74RU6 HxsAnjPghVbpDNH9+UniOpIQQqDTp5SS =xpyk -----END PGP SIGNATURE----- _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- [NSE][PATCH] only show script errors in verbose mode Sven Klemm (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Fyodor (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Sven Klemm (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Diman Todorov (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Sven Klemm (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Patrick Donnelly (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Sven Klemm (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Fyodor (Sep 23)
- Re: [NSE][PATCH] only show script errors in verbose mode Sven Klemm (Sep 24)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 24)
- Re: [NSE][PATCH] only show script errors in verbose mode Patrick Donnelly (Sep 24)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 24)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 24)
- Re: [NSE][PATCH] only show script errors in verbose mode Patrick Donnelly (Sep 25)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 25)
- Re: [NSE][PATCH] only show script errors in verbose mode Patrick Donnelly (Sep 25)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 25)
- Re: [NSE][PATCH] only show script errors in verbose mode Patrick Donnelly (Sep 25)
- Re: [NSE][PATCH] only show script errors in verbose mode David Fifield (Sep 26)
- Re: [NSE][PATCH] only show script errors in verbose mode Fyodor (Sep 23)