When testing using Nessus I am seeing probes on my apache web server which I believe are coming from the above script that do not have / between the directory and the file name eg:-
"GET /includeswebcart.cgi?CONFIG=mountain&CHANGE=YES&NEXTPAGE=;id|&CODE=PHOLD HTTP/1.1" 404 11154 "-" "Mozilla/4.75 [en] (X11, U; Nessus)" I think this should read as follows:- "GET /includes/webcart.cgi?CONFIG=mountain&CHANGE=YES&NEXTPAGE=;id|&CODE=PHOLD HTTP/1.1" 404 11154 "-" "Mozilla/4.75 [en] (X11, U; Nessus)" Is there a / missing at the start of the check_request statement? regards, Brian _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
