Re: [W3af-develop] Gray background

Sun, 09 Aug 2009 14:47:26 -0700 

Hello!

>     I was wondering... why did you change the background of the
> request/response viewer to gray? Can we change it back to white? I
> tried to change it back, but failed to find the lines that turn it
> gray :(

We are talking about reqResViewer.py lines:

    def _changeRawCB(self):
        (head, data) = self.getBothTexts()
        try:
            if not len(head):
                raise w3afException("Empty HTTP Request head")
            self._obj = httpRequestParser(head, data)
            self._raw.reset_bg_color()
        except w3afException, ex:
            self._raw.set_bg_color(gtk.gdk.color_parse("#FFCACA"))

and
  def reset_bg_color(self):
        self.textView.modify_base(gtk.STATE_NORMAL, 
gtk.gdk.color_parse("#E4E4E4"))

---------------------------------------
This code changes bg color of HTTP reqest/response raw data area.
It change it in #FFCACA when you edited HTTP request body manually and made 
mistake in syntax (if we can't parse body).
Ligh gray was chosen by default because it is good for plain code.
Of course we can change it back to white =)

A few words about current work.
I just passed WiFu exam and now can give more time to W3AF developing.
Now I'm making new History class to replace direct calls of persist().
Example:
 def logHttp( self, request, response):
        historyItem = self._history.getNewItem()
        try:
            historyItem.request = request
            historyItem.response = response
            historyItem.save()
...

It'll give us opportunity to update history items by ID like:
  def _impactDone(self, event, impact):
        ...
        # Analyzee the impact
        if impact.ok:
            historyItem = history.getItemById(id)
            historyItem.info = impact.result
            historyItem.update()
            ...

So after audit plugin will finish it's work we can save result in db.
And after it simple refresh data in History tab.
Rows (req/res) in which were found vurnelabilities will be colored and in 
separate tab of req/res summary we will show plugin output.
So there will no needing to show any alerts. User will see results immediately.
What do you think about this idea?

-- 
Taras
----
"Software is like sex: it's better when it's free." - Linus Torvalds

Attachment: pgpK5v8hKgvyJ.pgp
Description: PGP signature

------------------------------------------------------------------------------
Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day 
trial. Simplify your report design, integration and deployment - and focus on 
what you do best, core application coding. Discover what's new with 
Crystal Reports now.  http://p.sf.net/sfu/bobj-july
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop

Reply via email to