Re: New script - http-favicon.nse

[Javier Fernández-Sanguino Peña <jfs () computer org>]

[ Sorry if I break the thread, I'm not subscribed to the list and I cannot
easily extract the Message-ID from the archives to keep the reply 'sane' ]

As the original author of the 'webserver_favicon.nasl' NASL script  [1] I'm
happy to grant permission to use whatever is useful in that old script as a
new (rehashed) NSE script for Nmap.

Of course, credit would be nice, but is not required. 

As Fyodor said in the thread, that favicon MD5 information in the NASL script
was not comprehensive. It never intented to be, I wrote the script as a proof
of concept, dedicating a few hours of my life in the hopes that the
(NASL developers) 'community' would maintain it. Alas, I didn't have time to
maintain it and that 'community' was, as you already know, squashed.

That being said, I'm happy and proud to see (as I read this thread) that there
is a new community willing to pick up that small piece of work and turn it
into a comprehensive database. That might certainly make life a little bit
easier to security practicioners out there. So congrats!

FWIW, I don't consider copying 6 strings and their associated md5sums as "code
reuse" so I would not consider imposing that this new script had to be GPL
licensed arguing that it is a 'derived work'. In any case, I see that the NSE
script provided by Vlatko Kosturjak already points to Nmap's license (which
is GPL) which makes me even happier :))

Keep up the good work!

Javier

[1] Initially developed for Nessus and distributed in its 'Free feed' and
later included in OpenVAS.

Attachment: signature.asc
Description: Digital signature

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org