Nmap Development mailing list archives
Re: [NSE] 404 handling in http-default-accounts-fingerprints
From: George Chatzisofroniou <sophron () latthi com>
Date: Mon, 29 Jul 2013 18:54:03 +0300
On Sat, Jul 27, 2013 at 01:33:25AM +0000, nnposter () users sourceforge net wrote:
The following patch allows http-default-accounts-fingerprints.lua to correctly handle cases where the response in try_http_post_login() is HTTP/404. Without this patch such cases can be misinterpreted as authentication successes due to the fact that the response does not contain the validation string, such as "Invalid auth credentials!" or "Login Error !!".
Applied as revision 31578. -- George Chatzisofroniou _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] 404 handling in http-default-accounts-fingerprints nnposter (Jul 26)
- Re: [NSE] 404 handling in http-default-accounts-fingerprints George Chatzisofroniou (Jul 29)