Hi,
more and more often i see nasls containing s.th. like:
port = is_cgi_installed("some.cgi");
if(port)security_hole(port);
does is_cgi_installed *really* return a *port*?! which ports does it check?
i came to this as i checked webserver_robot.nasl, as it proved to (not)
report a "true positive" :-)
we definitely have a /robots.txt here.
thinking of it: earlier we found almost everywhere a "robots.txt". now
for a long time we never heard about that from nessus. when was the last
change to that script?
any hints?
thanks
Hardy
-
[EMAIL PROTECTED]: general discussions about Nessus.
* To unsubscribe, send a mail to [EMAIL PROTECTED] with
"unsubscribe nessus" in the body.
- Re: wrong use of is_cgi_installed? Hartmut Steffin
- Re: wrong use of is_cgi_installed? Renaud Deraison
