Your message dated Thu, 15 Oct 2009 16:37:53 +0000
with message-id <[email protected]>
and subject line Bug#551003: fixed in nikto 2.03-2
has caused the Debian Bug report #551003,
regarding nikto: IDS evasion technique unusable
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
551003: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=551003
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: nikto
Version: 2.03-1
Severity: important
Tags: patch
Hello,
Nikto includes an option to use libwhisker's anti-IDS techniques (via
command-line's "-evasion" argument) which is currently unusable. The
problem resides in the way used by nikto to activate this option.
Nikto gives the "encode_anti_ids" option to libwhisker while the
correct one is "anti_ids".
Here is patch (in dpatch format) which should solves the problem.
Thanks,
Olivier;
-- System Information:
Debian Release: squeeze/sid
APT prefers oldstable
APT policy: (500, 'oldstable'), (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.30-2-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages nikto depends on:
ii libnet-ssleay-perl 1.35-2 Perl module for Secure Sockets Lay
ii libwhisker2-perl 2.4-1 Perl module geared for HTTP testin
ii perl 5.10.1-5 Larry Wall's Practical Extraction
nikto recommends no packages.
Versions of packages nikto suggests:
ii nmap 5.00-3 The Network Mapper
-- no debconf information
#! /bin/sh /usr/share/dpatch/dpatch-run
## 01path.dpatch by Olivier Tétard <[email protected]>
##
## All lines beginning with `## DP:' are a description of the patch.
## DP: Fix paths to be compatible with Debian installation
@DPATCH@
nikto.pl | 2 +-
plugins/nikto_single.plugin | 10 +++++-----
2 files changed, 6 insertions(+), 6 deletions(-)
diff --git a/nikto.pl b/nikto.pl
index 55e8daf..2281675 100755
--- a/nikto.pl
+++ b/nikto.pl
@@ -83,7 +83,7 @@ LW2::http_init_request(\%request);
$request{'whisker'}->{'ssl_save_info'} = 1;
$request{'whisker'}->{'lowercase_incoming_headers'} = 1;
$request{'whisker'}->{'timeout'} = $CLI{timeout} || 10;
-if ($CLI{evasion} ne "") { $request{'whisker'}->{'encode_anti_ids'} = $CLI{evasion}; }
+if ($CLI{evasion} ne "") { $request{'whisker'}->{'anti_ids'} = $CLI{evasion}; }
$request{'User-Agent'} = $NIKTO{useragent};
$request{'whisker'}->{'retry'} = 0;
proxy_setup();
diff --git a/plugins/nikto_single.plugin b/plugins/nikto_single.plugin
index 6ab7e40..ed5905e 100644
--- a/plugins/nikto_single.plugin
+++ b/plugins/nikto_single.plugin
@@ -106,8 +106,8 @@ sub single
$request{'whisker'}{$key} = ask("$key ($request{'whisker'}{$key})") || $request{'whisker'}{$key};
}
- $request{'whisker'}->{'encode_anti_ids'} = ask("Enable Anti-IDS (0)");
- if ($request{'whisker'}->{'encode_anti_ids'} eq 1)
+ $request{'whisker'}->{'anti_ids'} = ask("Enable Anti-IDS (0)");
+ if ($request{'whisker'}->{'anti_ids'} eq 1)
{
print "
\t1 Random URI encoding (non-UTF8)
@@ -119,11 +119,11 @@ sub single
\t7 Random case sensitivity
\t8 Use Windows directory separator (\\)\n";
- $request{'whisker'}{'encode_anti_ids'} = ask("Anti-IDS Methods");
- if ($request{'whisker'}{'encode_anti_ids'} eq "") { delete($request{'whisker'}->{'encode_anti_ids'}); }
+ $request{'whisker'}{'anti_ids'} = ask("Anti-IDS Methods");
+ if ($request{'whisker'}{'anti_ids'} eq "") { delete($request{'whisker'}->{'anti_ids'}); }
} else
{
- delete($request{'whisker'}->{'encode_anti_ids'});
+ delete($request{'whisker'}->{'anti_ids'});
}
print "-" x $width, " Done with questions\n";
--- End Message ---
--- Begin Message ---
Source: nikto
Source-Version: 2.03-2
We believe that the bug you reported is fixed in the latest version of
nikto, which is due to be installed in the Debian FTP archive:
nikto_2.03-2.diff.gz
to pool/non-free/n/nikto/nikto_2.03-2.diff.gz
nikto_2.03-2.dsc
to pool/non-free/n/nikto/nikto_2.03-2.dsc
nikto_2.03-2_all.deb
to pool/non-free/n/nikto/nikto_2.03-2_all.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Vincent Bernat <[email protected]> (supplier of updated nikto package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Thu, 15 Oct 2009 18:00:56 +0200
Source: nikto
Binary: nikto
Architecture: source all
Version: 2.03-2
Distribution: unstable
Urgency: low
Maintainer: Vincent Bernat <[email protected]>
Changed-By: Vincent Bernat <[email protected]>
Description:
nikto - web server security scanner
Closes: 551003
Changes:
nikto (2.03-2) unstable; urgency=low
.
* Fix anti-ids feature, thanks to a patch from Olivier Tétard.
Closes: #551003.
* Bump Standards-Version to 3.8.3. No change required.
* Register manual in doc-base.
Checksums-Sha1:
e871c7bf9688c71bfd3d5dc0f1f8d48db17c4256 1083 nikto_2.03-2.dsc
1dd7a8cb39117239939e506ed3e82fb86d22506d 6618 nikto_2.03-2.diff.gz
660ffe95583b4868492a85f57bb0fb527ef489de 201156 nikto_2.03-2_all.deb
Checksums-Sha256:
b6fb6cb24ff40c542ca3e4b61040c583c42022ab7aba2d98f8a61aebcb0bc4fb 1083
nikto_2.03-2.dsc
f60d38402f07722f7caa8d95262a3e99224823176ed2c2183129ab2bb584e259 6618
nikto_2.03-2.diff.gz
fffcce4d23ef86e0a73104be8c72fc50914574110b91c9a2f6e3ef96d6977b6f 201156
nikto_2.03-2_all.deb
Files:
4b3d8fed46359cf23604d879db072809 1083 non-free/net extra nikto_2.03-2.dsc
5f4eec05799049d17ff9a82801630fb9 6618 non-free/net extra nikto_2.03-2.diff.gz
81d356507a398ab5456904be59ca51bc 201156 non-free/net extra nikto_2.03-2_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAkrXTSYACgkQKFvXofIqeU7CCwCfbF8a1fFIa46CmtPjhlnxuvsd
LOAAoKMop+kEfyzCTSI3FWCRVodfAyBi
=M3Wn
-----END PGP SIGNATURE-----
--- End Message ---
