From ian at ncsa.jp Wed May 18 23:55:33 2016 From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=) Date: Thu, 19 May 2016 13:55:33 +0900 Subject: [Nikto-discuss] No web server found on ip:443 Message-ID: Hi I'm getting the "No web server found on ip:443" message Any help would be much appreciated Thanks ian I'm using nikto version 2.1.6 on CentOS 6 Here's the output of my scan: [user at cent63-user-01 program]$ perl ./nikto.pl -h https://192.168.56.103:443 -Display V -D d D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_parked_strings D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_404_strings D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_outdated D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_variables D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_tests - Nikto v2.1.6 --------------------------------------------------------------------------- D:Thu May 19 13:49:57 2016 WARNING: No init found for nikto_core D:Thu May 19 13:49:57 2016 'Request Hash' = { 'Connection' => 'Keep-Alive', 'whisker' => { 'protocol' => 'HTTP', 'require_newline_after_headers' => 0, 'lowercase_incoming_headers' => 1, 'uri_prefix' => '', 'ssl_save_info' => 1, 'http_space2' => ' ', 'ssl_rsacertfile' => undef, 'uri_param_sep' => '?', 'timeout' => 10, 'http_space1' => ' ', 'method' => 'HEAD', 'force_open' => 0, 'include_host_in_uri' => 0, 'ignore_duplicate_headers' => 1, 'uri_postfix' => '', 'keep-alive' => 1, 'ssl' => 1, 'version' => '1.1', 'ssl_certfile' => undef, 'port' => 443, 'uri' => '/', 'host' => '192.168.56.103', 'retry' => 0, 'normalize_incoming_headers' => 1, 'invalid_protocol_return_value' => 1, 'force_bodysnatch' => 0, 'MAGIC' => 31339, 'max_size' => 0, 'trailing_slurp' => 0, 'force_close' => 0, 'http_eol' => "\r\n" }, 'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)', 'Host' => '192.168.56.103' }; D:Thu May 19 13:49:57 2016 'Result Hash' = { 'whisker' => { 'error' => 'opening stream: can\'t connect: ', 'uri' => '/', 'MAGIC' => 31340 } }; D:Thu May 19 13:49:57 2016 'Request Hash' = { 'Connection' => 'Keep-Alive', 'whisker' => { 'protocol' => 'HTTP', 'require_newline_after_headers' => 0, 'lowercase_incoming_headers' => 1, 'uri_prefix' => '', 'ssl_save_info' => 1, 'http_space2' => ' ', 'ssl_rsacertfile' => undef, 'uri_param_sep' => '?', 'timeout' => 10, 'http_space1' => ' ', 'method' => 'HEAD', 'force_open' => 0, 'include_host_in_uri' => 0, 'ignore_duplicate_headers' => 1, 'uri_postfix' => '', 'keep-alive' => 1, 'ssl' => 0, 'version' => '1.1', 'ssl_certfile' => undef, 'port' => 443, 'uri' => '/', 'host' => '192.168.56.103', 'retry' => 0, 'normalize_incoming_headers' => 1, 'invalid_protocol_return_value' => 1, 'force_bodysnatch' => 0, 'MAGIC' => 31339, 'max_size' => 0, 'trailing_slurp' => 0, 'force_close' => 0, 'http_eol' => "\r\n" }, 'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)', 'Host' => '192.168.56.103' }; D:Thu May 19 13:49:57 2016 'Result Hash' = { 'whisker' => { 'error' => 'invalid HTTP response', 'lowercase_incoming_headers' => 1, 'http_data_sent' => 1, 'data' => "\n\n400 Bad Request\n\n

Bad Request

\n

Your browser sent a request that this server could not understand.
\nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
\n

Hint: https://192.168.56.101/

\n
\n
Apache/2.2.15 (CentOS) Server at 192.168.56.101 Port 443
\n\n", 'uri' => '/', 'MAGIC' => 31340 } }; D:Thu May 19 13:49:58 2016 'Request Hash' = { 'Connection' => 'Keep-Alive', 'whisker' => { 'protocol' => 'HTTP', 'require_newline_after_headers' => 0, 'lowercase_incoming_headers' => 1, 'uri_prefix' => '', 'ssl_save_info' => 1, 'http_space2' => ' ', 'ssl_rsacertfile' => undef, 'uri_param_sep' => '?', 'timeout' => 10, 'http_space1' => ' ', 'method' => 'GET', 'force_open' => 0, 'include_host_in_uri' => 0, 'ignore_duplicate_headers' => 1, 'uri_postfix' => '', 'keep-alive' => 1, 'ssl' => 1, 'version' => '1.1', 'ssl_certfile' => undef, 'port' => 443, 'uri' => '/', 'host' => '192.168.56.103', 'retry' => 0, 'normalize_incoming_headers' => 1, 'invalid_protocol_return_value' => 1, 'force_bodysnatch' => 0, 'MAGIC' => 31339, 'max_size' => 0, 'trailing_slurp' => 0, 'force_close' => 0, 'http_eol' => "\r\n" }, 'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)', 'Host' => '192.168.56.103' }; D:Thu May 19 13:49:58 2016 'Result Hash' = { 'whisker' => { 'error' => 'opening stream: can\'t connect: ', 'uri' => '/', 'MAGIC' => 31340 } }; D:Thu May 19 13:49:58 2016 'Request Hash' = { 'Connection' => 'Keep-Alive', 'whisker' => { 'protocol' => 'HTTP', 'require_newline_after_headers' => 0, 'lowercase_incoming_headers' => 1, 'uri_prefix' => '', 'ssl_save_info' => 1, 'http_space2' => ' ', 'ssl_rsacertfile' => undef, 'uri_param_sep' => '?', 'timeout' => 10, 'http_space1' => ' ', 'method' => 'GET', 'force_open' => 0, 'include_host_in_uri' => 0, 'ignore_duplicate_headers' => 1, 'uri_postfix' => '', 'keep-alive' => 1, 'ssl' => 0, 'version' => '1.1', 'ssl_certfile' => undef, 'port' => 443, 'uri' => '/', 'host' => '192.168.56.103', 'retry' => 0, 'normalize_incoming_headers' => 1, 'invalid_protocol_return_value' => 1, 'force_bodysnatch' => 0, 'MAGIC' => 31339, 'max_size' => 0, 'trailing_slurp' => 0, 'force_close' => 0, 'http_eol' => "\r\n" }, 'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)', 'Host' => '192.168.56.103' }; D:Thu May 19 13:49:58 2016 'Result Hash' = { 'whisker' => { 'error' => 'invalid HTTP response', 'lowercase_incoming_headers' => 1, 'http_data_sent' => 1, 'data' => "\n\n400 Bad Request\n\n

Bad Request

\n

Your browser sent a request that this server could not understand.
\nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
\n

Hint: https://192.168.56.101/

\n
\n
Apache/2.2.15 (CentOS) Server at 192.168.56.101 Port 443
\n\n", 'uri' => '/', 'MAGIC' => 31340 } }; + No web server found on 192.168.56.103:443 --------------------------------------------------------------------------- + 0 host(s) tested D:Thu May 19 13:50:01 2016 T:Thu May 19 13:50:01 2016: Ending From FBreedijk at schubergphilis.com Thu May 19 00:17:59 2016 From: FBreedijk at schubergphilis.com (Frank Breedijk) Date: Thu, 19 May 2016 05:17:59 +0000 Subject: [Nikto-discuss] No web server found on ip:443 In-Reply-To: References: Message-ID: There is a clue in the error message: nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. My guess is that you are missing this perl module on your system: http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm Sent from my mobile device, sorry for the typyos. > On 19 May 2016, at 06:56, ????????? wrote: > > nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. From ian at ncsa.jp Thu May 19 01:07:28 2016 From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=) Date: Thu, 19 May 2016 15:07:28 +0900 Subject: [Nikto-discuss] No web server found on ip:443 Message-ID: Hi Frank Thanks a lot for the reply. I didn't have that module so I installed it from RPMs: -rw-r--r-- 1 root root 1272 Oct 4 2009 /usr/share/perl5/LWP/Protocol/https.pm -rw-r--r-- 1 root root 89 Apr 4 2008 /usr/share/perl5/URI/https.pm and restarted httpd but I'm still getting the same error. I checked for dependencies again and all of these are installed: openssl-devel perl perl-Net-SSLeay perl-Crypt-SSLeay Also rebooted the server just for good measure. No change. Searched around for any dependencies I may have missed and installed these: openssl-perl perl-MD5 perl-libwhisker2 restarted httpd, no change Any other ideas? >There is a clue in the error message: > >nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. > >My guess is that you are missing this perl module on your system: > >http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm > > >Sent from my mobile device, sorry for the typyos. > >> On 19 May 2016, at 06:56, ????????? wrote: >> >> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. > From FBreedijk at schubergphilis.com Thu May 19 02:11:16 2016 From: FBreedijk at schubergphilis.com (Frank Breedijk) Date: Thu, 19 May 2016 07:11:16 +0000 Subject: [Nikto-discuss] No web server found on ip:443 In-Reply-To: References: Message-ID: Can you check if you have this module: For SSL support the Net::SSLeay Perl module must be installed Sent from my mobile device, sorry for the typyos. > On 19 May 2016, at 08:08, ????????? wrote: > > Hi Frank > > Thanks a lot for the reply. > > I didn't have that module so I installed it from RPMs: > -rw-r--r-- 1 root root 1272 Oct 4 2009 /usr/share/perl5/LWP/Protocol/https.pm > -rw-r--r-- 1 root root 89 Apr 4 2008 /usr/share/perl5/URI/https.pm > > and restarted httpd but I'm still getting the same error. > > I checked for dependencies again and all of these are installed: > openssl-devel perl perl-Net-SSLeay perl-Crypt-SSLeay > > Also rebooted the server just for good measure. No change. > > Searched around for any dependencies I may have missed and installed these: > openssl-perl perl-MD5 perl-libwhisker2 > > restarted httpd, no change > > Any other ideas? > > > >> There is a clue in the error message: >> >> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. >> >> My guess is that you are missing this perl module on your system: >> >> http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm >> >> >> Sent from my mobile device, sorry for the typyos. >> >>> On 19 May 2016, at 06:56, ????????? wrote: >>> >>> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please. >> From ian at ncsa.jp Thu May 19 02:17:29 2016 From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=) Date: Thu, 19 May 2016 16:17:29 +0900 Subject: [Nikto-discuss] No web server found on ip:443 Message-ID: OK, I tried something else. I ran nikto from my Win 7 machine against the centos server and the results were also the same. I wonder if there's a problem with the way I setup apache. I used a self-signed cert for TLS. Nmap tells me the port is open and that: 443/tcp open ssl/http Apache httpd 2.2.15 ((CentOS)) Any more ideas? Thanks From robin at digi.ninja Thu May 19 02:22:08 2016 From: robin at digi.ninja (Robin Wood) Date: Thu, 19 May 2016 07:22:08 +0000 Subject: [Nikto-discuss] No web server found on ip:443 In-Reply-To: References: Message-ID: What does curl think when you try to connect to the server? On Thu, 19 May 2016 08:17 ????? ???, wrote: > OK, I tried something else. > > I ran nikto from my Win 7 machine against the centos server and the > results were also the same. > > I wonder if there's a problem with the way I setup apache. I used a > self-signed cert for TLS. Nmap tells me the port is open and that: > 443/tcp open ssl/http Apache httpd 2.2.15 ((CentOS)) > > Any more ideas? > > Thanks > _______________________________________________ > Nikto is sponsored by Netsparker, a false positive free web application > security scanner and Netsparker Cloud online scanner. > Visit https://www.netsparker.com/ for more information. > _______________________________________________ > Nikto-discuss mail list > Nikto-discuss at attrition.org > https://attrition.org/mailman/listinfo/nikto-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: From ian at ncsa.jp Thu May 19 02:58:12 2016 From: ian at ncsa.jp (=?UTF-8?B?44Oe44K544K/44O844K644CA44Kk44Ki44Oz?=) Date: Thu, 19 May 2016 16:58:12 +0900 Subject: [Nikto-discuss] No web server found on ip:443 Message-ID: >What does curl think when you try to connect to the server? Robin ? Thanks for the reply. Curl told me I was trying to connect via a proxy server, which doesn't have 443 open. Doh! All working fine now. Thanks very much to you both. (Goes off to stand in the corner) ?