From wkwang at cisco.com Wed Jun 10 14:33:38 2009 From: wkwang at cisco.com (Peter Wang) Date: Wed, 10 Jun 2009 10:33:38 -0400 Subject: [Nikto-discuss] weak etag vulnerability? Message-ID: Hi, I got a Nikto report of item 999984 as below. It seemed to be a weak etag. But I can?t find any other reference from Nikto report to this item. no OSVDB ID like other items. How can I further verify if it?s a real vulnerability or false positive? ETag header found on server, fields: 0xW/26 0x1244346013000 Is it just an informational item which Nikto reported? Are you aware if there is any vulnerability associated with it? Thanks, Peter PS: sorry if it?s a re-send. 1st email accidently to nikto-discuss-bounces at attrition.org -------------- next part -------------- An HTML attachment was scrubbed... URL: http://attrition.org/pipermail/nikto-discuss/attachments/20090610/cc7bb10d/attachment.html From dave at cirt.net Wed Jun 10 21:20:08 2009 From: dave at cirt.net (David Lodge) Date: Wed, 10 Jun 2009 22:20:08 +0100 Subject: [Nikto-discuss] weak etag vulnerability? In-Reply-To: References: Message-ID: <1244668808.3128.5.camel@yggdrasil> > I got a Nikto report of item 999984 as below. It seemed to be a weak > etag. But I can?t find any other reference from Nikto report to this > item. > no OSVDB ID like other items. How can I further verify if it?s a real > vulnerability or false positive? > > > ETag header found on server, fields: 0xW/26 > 0x1244346013000 > > Is it just an informational item which Nikto reported? Are you aware > if there is any vulnerability associated with it? This item is just an informational vulnerability, on some web servers (e.g. Apache), the etag includes information including the inode, which could be used to mount an attack on say, NFS exports. As there's nothing in the above I'd say it was informational and can be ignored. I'd only report an etag if it included something like inode. Hope that helps dave From gau.29486 at gmail.com Tue Jun 23 15:46:58 2009 From: gau.29486 at gmail.com (Gaurang Shukla) Date: Tue, 23 Jun 2009 10:46:58 -0500 Subject: [Nikto-discuss] User Defined DB Message-ID: Hey All, I have recently installed Nikto to test my websites. My websites run using Joomla and some other popular softwares. I want to write my own test which checks whether certain files/paths are available in the website. Could anybody help me out on this? I know that I have to make a udb_outdated or similar file, But I am not sure as to how exactly should I write a file, and what should its extension be. (I run Nikto on windows, so all file extensions show up as "File") Thank you. -Gaurang -------------- next part -------------- An HTML attachment was scrubbed... URL: http://attrition.org/pipermail/nikto-discuss/attachments/20090623/7d637432/attachment.html From ryandewhurst at gmail.com Tue Jun 23 16:32:36 2009 From: ryandewhurst at gmail.com (Ryan Dewhurst) Date: Tue, 23 Jun 2009 17:32:36 +0100 Subject: [Nikto-discuss] User Defined DB In-Reply-To: References: Message-ID: Hello, Check the Nikto documentation it gives clear instructions on how to acomplish this. Chapter 7 should cover everything you need to know. http://cirt.net/nikto2-docs/ch07.html Ryan 2009/6/23 Gaurang Shukla : > Hey All, > > > > ? I have recently installed Nikto to test my websites. My websites run?using > Joomla and some other popular softwares. > > ? I want to write my own test which checks whether certain files/paths?are > available in the website. > > ? Could anybody help me out on this? I know that I have to make > a?udb_outdated or similar file, But I am not sure as to how exactly should?I > write a file, and what should its extension be. (I run Nikto on?windows, so > all file extensions show up as "File") > > ??Thank you. > > -Gaurang > > > > _______________________________________________ > Nikto-discuss mailing list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > >