Anders,
Please read inline,
On Thu, May 5, 2011 at 9:01 AM, Anders Thulin <[email protected]> wrote:
> Here is a new fingerprint for hmap
>
> * mbedthis-appweb-2.4.0.juniper-srx100 (see attached file)
>
> This is an AppWeb embeddable web server from Mbedthis, running on
> a Juniper SRX100 gateway.
Great! Just added it to the trunk, you can get it in the latest
revision 4194.
> It shows quite a lot of NO_RESPONSE_CODE for malformed requests. As
> far as I can find this is because the web server returns responses on
> the following format. For MALFORMED_000:
>
> GET
>
> it returns:
>
> UnknownMethod 400 Bad Request
> Server: Mbedthis-Appweb/2.4.0
> ... etc. followed by a Error 400 HTML message
>
> When the request is, say, 'GET / HTTP/Q.Q' (MALFORMED_010), the response
> is also
>
> HTTP/Q.Q 400 Bad Request
>
> That is, it just echoes the HTTP-Version right back. HMAP requires correct
> HTTP-version to identify a status code, and so doesn't recognize these.
Damn! That's odd :S
> An idea for handling this is to make hmap parse responses as three space-
> separated fields, and then check the second field for legal status code.
>
> For more detailed profiling it would be possible to check the first and third
> fields against protocol or standard reasons, and register deviations, but that
> would need special handling to allow existing hmap fingerprints to be used.
I agree with the way of fixing this, but the question should be...
do we want to fix it? I'll leave you a question to think about: What
would happen if we fix this issue? What happens with the old
fingerprints?
Regards,
>
> best wishes,
> --
> Anders Thulin [email protected] 070-757 36 10 / Intl. +46 70
> 757 36 10
>
> ------------------------------------------------------------------------------
> WhatsUp Gold - Download Free Network Management Software
> The most intuitive, comprehensive, and cost-effective network
> management toolset available today. Delivers lowest initial
> acquisition cost and overall TCO of any competing solution.
> http://p.sf.net/sfu/whatsupgold-sd
> _______________________________________________
> W3af-develop mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/w3af-develop
>
>
--
Andrés Riancho
Director of Web Security at Rapid7 LLC
Founder at Bonsai Information Security
Project Leader at w3af
------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network
management toolset available today. Delivers lowest initial
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________
W3af-develop mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/w3af-develop
