Nmap Development mailing list archives

Re: Nmap DTD and XML

From: David Fifield <david () bamsoftware com>
Date: Wed, 15 Jul 2009 10:02:01 -0600

On Wed, Jul 15, 2009 at 11:20:03AM +0100, Luis A. Bastiao Silva wrote:

I was wondering about Nmap DTD[1] and checking Nmap XML output and make some
validation based on DTD file.

I checked some files and it doesn't pass. Is it normal?

For example:

<!ELEMENT trace (hop*, error?) >
<!ATTLIST trace
      proto   CDATA   #REQUIRED
      port    CDATA   #REQUIRED


In this case (trace) proto is mandatory ? For example try do something like
that:
nmap -PN -p80 --traceroute scanme.nmap.org -oX file.xml

I got something like that:
<trace port="80" >
<hop ttl="1" rtt="0.00" ipaddr="192.168.1.1"/>
...
</trace>

Or REQUIRED doesn't mean mandatory in DTD format? At least in w3 [2] they
said that value should be present. So "proto" is not required, right?

Is there something wrong with DTD? Is it outdated?


In this case the bug is in the code, not the DTD. There really should be
a proto="tcp" there.

David Fifield

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

Nmap DTD and XML Luis A. Bastiao Silva (Jul 15)
- Re: Nmap DTD and XML David Fifield (Jul 15)