From ian at ncsa.jp Wed May 18 23:55:33 2016
From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=)
Date: Thu, 19 May 2016 13:55:33 +0900
Subject: [Nikto-discuss] No web server found on ip:443
Message-ID:
Hi
I'm getting the "No web server found on ip:443" message
Any help would be much appreciated
Thanks
ian
I'm using nikto version 2.1.6 on CentOS 6
Here's the output of my scan:
[user at cent63-user-01 program]$ perl ./nikto.pl -h https://192.168.56.103:443 -Display V -D d
D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_parked_strings
D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_404_strings
D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_outdated
D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_variables
D:Thu May 19 13:49:56 2016 - Loading DB: /home/user/nikto-2.1.6/program/databases/db_tests
- Nikto v2.1.6
---------------------------------------------------------------------------
D:Thu May 19 13:49:57 2016 WARNING: No init found for nikto_core
D:Thu May 19 13:49:57 2016 'Request Hash' = {
'Connection' => 'Keep-Alive',
'whisker' => {
'protocol' => 'HTTP',
'require_newline_after_headers' => 0,
'lowercase_incoming_headers' => 1,
'uri_prefix' => '',
'ssl_save_info' => 1,
'http_space2' => ' ',
'ssl_rsacertfile' => undef,
'uri_param_sep' => '?',
'timeout' => 10,
'http_space1' => ' ',
'method' => 'HEAD',
'force_open' => 0,
'include_host_in_uri' => 0,
'ignore_duplicate_headers' => 1,
'uri_postfix' => '',
'keep-alive' => 1,
'ssl' => 1,
'version' => '1.1',
'ssl_certfile' => undef,
'port' => 443,
'uri' => '/',
'host' => '192.168.56.103',
'retry' => 0,
'normalize_incoming_headers' => 1,
'invalid_protocol_return_value' => 1,
'force_bodysnatch' => 0,
'MAGIC' => 31339,
'max_size' => 0,
'trailing_slurp' => 0,
'force_close' => 0,
'http_eol' => "\r\n"
},
'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)',
'Host' => '192.168.56.103'
};
D:Thu May 19 13:49:57 2016 'Result Hash' = {
'whisker' => {
'error' => 'opening stream: can\'t connect: ',
'uri' => '/',
'MAGIC' => 31340
}
};
D:Thu May 19 13:49:57 2016 'Request Hash' = {
'Connection' => 'Keep-Alive',
'whisker' => {
'protocol' => 'HTTP',
'require_newline_after_headers' => 0,
'lowercase_incoming_headers' => 1,
'uri_prefix' => '',
'ssl_save_info' => 1,
'http_space2' => ' ',
'ssl_rsacertfile' => undef,
'uri_param_sep' => '?',
'timeout' => 10,
'http_space1' => ' ',
'method' => 'HEAD',
'force_open' => 0,
'include_host_in_uri' => 0,
'ignore_duplicate_headers' => 1,
'uri_postfix' => '',
'keep-alive' => 1,
'ssl' => 0,
'version' => '1.1',
'ssl_certfile' => undef,
'port' => 443,
'uri' => '/',
'host' => '192.168.56.103',
'retry' => 0,
'normalize_incoming_headers' => 1,
'invalid_protocol_return_value' => 1,
'force_bodysnatch' => 0,
'MAGIC' => 31339,
'max_size' => 0,
'trailing_slurp' => 0,
'force_close' => 0,
'http_eol' => "\r\n"
},
'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)',
'Host' => '192.168.56.103'
};
D:Thu May 19 13:49:57 2016 'Result Hash' = {
'whisker' => {
'error' => 'invalid HTTP response',
'lowercase_incoming_headers' => 1,
'http_data_sent' => 1,
'data' => "\n\n400 Bad Request\n\nBad Request
\nYour browser sent a request that this server could not understand.
\nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
\n
Hint: https://192.168.56.101/
\n
\nApache/2.2.15 (CentOS) Server at 192.168.56.101 Port 443\n\n",
'uri' => '/',
'MAGIC' => 31340
}
};
D:Thu May 19 13:49:58 2016 'Request Hash' = {
'Connection' => 'Keep-Alive',
'whisker' => {
'protocol' => 'HTTP',
'require_newline_after_headers' => 0,
'lowercase_incoming_headers' => 1,
'uri_prefix' => '',
'ssl_save_info' => 1,
'http_space2' => ' ',
'ssl_rsacertfile' => undef,
'uri_param_sep' => '?',
'timeout' => 10,
'http_space1' => ' ',
'method' => 'GET',
'force_open' => 0,
'include_host_in_uri' => 0,
'ignore_duplicate_headers' => 1,
'uri_postfix' => '',
'keep-alive' => 1,
'ssl' => 1,
'version' => '1.1',
'ssl_certfile' => undef,
'port' => 443,
'uri' => '/',
'host' => '192.168.56.103',
'retry' => 0,
'normalize_incoming_headers' => 1,
'invalid_protocol_return_value' => 1,
'force_bodysnatch' => 0,
'MAGIC' => 31339,
'max_size' => 0,
'trailing_slurp' => 0,
'force_close' => 0,
'http_eol' => "\r\n"
},
'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)',
'Host' => '192.168.56.103'
};
D:Thu May 19 13:49:58 2016 'Result Hash' = {
'whisker' => {
'error' => 'opening stream: can\'t connect: ',
'uri' => '/',
'MAGIC' => 31340
}
};
D:Thu May 19 13:49:58 2016 'Request Hash' = {
'Connection' => 'Keep-Alive',
'whisker' => {
'protocol' => 'HTTP',
'require_newline_after_headers' => 0,
'lowercase_incoming_headers' => 1,
'uri_prefix' => '',
'ssl_save_info' => 1,
'http_space2' => ' ',
'ssl_rsacertfile' => undef,
'uri_param_sep' => '?',
'timeout' => 10,
'http_space1' => ' ',
'method' => 'GET',
'force_open' => 0,
'include_host_in_uri' => 0,
'ignore_duplicate_headers' => 1,
'uri_postfix' => '',
'keep-alive' => 1,
'ssl' => 0,
'version' => '1.1',
'ssl_certfile' => undef,
'port' => 443,
'uri' => '/',
'host' => '192.168.56.103',
'retry' => 0,
'normalize_incoming_headers' => 1,
'invalid_protocol_return_value' => 1,
'force_bodysnatch' => 0,
'MAGIC' => 31339,
'max_size' => 0,
'trailing_slurp' => 0,
'force_close' => 0,
'http_eol' => "\r\n"
},
'User-Agent' => 'Mozilla/5.00 (Nikto/2.1.6) (Evasions:None) (Test:Port Check)',
'Host' => '192.168.56.103'
};
D:Thu May 19 13:49:58 2016 'Result Hash' = {
'whisker' => {
'error' => 'invalid HTTP response',
'lowercase_incoming_headers' => 1,
'http_data_sent' => 1,
'data' => "\n\n400 Bad Request\n\nBad Request
\nYour browser sent a request that this server could not understand.
\nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
\n
Hint: https://192.168.56.101/
\n
\nApache/2.2.15 (CentOS) Server at 192.168.56.101 Port 443\n\n",
'uri' => '/',
'MAGIC' => 31340
}
};
+ No web server found on 192.168.56.103:443
---------------------------------------------------------------------------
+ 0 host(s) tested
D:Thu May 19 13:50:01 2016 T:Thu May 19 13:50:01 2016: Ending
From FBreedijk at schubergphilis.com Thu May 19 00:17:59 2016
From: FBreedijk at schubergphilis.com (Frank Breedijk)
Date: Thu, 19 May 2016 05:17:59 +0000
Subject: [Nikto-discuss] No web server found on ip:443
In-Reply-To:
References:
Message-ID:
There is a clue in the error message:
nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
My guess is that you are missing this perl module on your system:
http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm
Sent from my mobile device, sorry for the typyos.
> On 19 May 2016, at 06:56, ????????? wrote:
>
> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
From ian at ncsa.jp Thu May 19 01:07:28 2016
From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=)
Date: Thu, 19 May 2016 15:07:28 +0900
Subject: [Nikto-discuss] No web server found on ip:443
Message-ID:
Hi Frank
Thanks a lot for the reply.
I didn't have that module so I installed it from RPMs:
-rw-r--r-- 1 root root 1272 Oct 4 2009 /usr/share/perl5/LWP/Protocol/https.pm
-rw-r--r-- 1 root root 89 Apr 4 2008 /usr/share/perl5/URI/https.pm
and restarted httpd but I'm still getting the same error.
I checked for dependencies again and all of these are installed:
openssl-devel perl perl-Net-SSLeay perl-Crypt-SSLeay
Also rebooted the server just for good measure. No change.
Searched around for any dependencies I may have missed and installed these:
openssl-perl perl-MD5 perl-libwhisker2
restarted httpd, no change
Any other ideas?
>There is a clue in the error message:
>
>nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
>
>My guess is that you are missing this perl module on your system:
>
>http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm
>
>
>Sent from my mobile device, sorry for the typyos.
>
>> On 19 May 2016, at 06:56, ????????? wrote:
>>
>> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
>
From FBreedijk at schubergphilis.com Thu May 19 02:11:16 2016
From: FBreedijk at schubergphilis.com (Frank Breedijk)
Date: Thu, 19 May 2016 07:11:16 +0000
Subject: [Nikto-discuss] No web server found on ip:443
In-Reply-To:
References:
Message-ID:
Can you check if you have this module:
For SSL support the Net::SSLeay Perl module must be installed
Sent from my mobile device, sorry for the typyos.
> On 19 May 2016, at 08:08, ????????? wrote:
>
> Hi Frank
>
> Thanks a lot for the reply.
>
> I didn't have that module so I installed it from RPMs:
> -rw-r--r-- 1 root root 1272 Oct 4 2009 /usr/share/perl5/LWP/Protocol/https.pm
> -rw-r--r-- 1 root root 89 Apr 4 2008 /usr/share/perl5/URI/https.pm
>
> and restarted httpd but I'm still getting the same error.
>
> I checked for dependencies again and all of these are installed:
> openssl-devel perl perl-Net-SSLeay perl-Crypt-SSLeay
>
> Also rebooted the server just for good measure. No change.
>
> Searched around for any dependencies I may have missed and installed these:
> openssl-perl perl-MD5 perl-libwhisker2
>
> restarted httpd, no change
>
> Any other ideas?
>
>
>
>> There is a clue in the error message:
>>
>> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
>>
>> My guess is that you are missing this perl module on your system:
>>
>> http://search.cpan.org/~gaas/LWP-Protocol-https-6.04/lib/LWP/Protocol/https.pm
>>
>>
>> Sent from my mobile device, sorry for the typyos.
>>
>>> On 19 May 2016, at 06:56, ????????? wrote:
>>>
>>> nReason: You're speaking plain HTTP to an SSL-enabled server port.
\nInstead use the HTTPS scheme to access this URL, please.
>>
From ian at ncsa.jp Thu May 19 02:17:29 2016
From: ian at ncsa.jp (=?ISO-2022-JP?B?GyRCJV4lOSU/ITwlOiEhJSQlIiVzGyhC?=)
Date: Thu, 19 May 2016 16:17:29 +0900
Subject: [Nikto-discuss] No web server found on ip:443
Message-ID:
OK, I tried something else.
I ran nikto from my Win 7 machine against the centos server and the results were also the same.
I wonder if there's a problem with the way I setup apache. I used a self-signed cert for TLS. Nmap tells me the port is open and that:
443/tcp open ssl/http Apache httpd 2.2.15 ((CentOS))
Any more ideas?
Thanks
From robin at digi.ninja Thu May 19 02:22:08 2016
From: robin at digi.ninja (Robin Wood)
Date: Thu, 19 May 2016 07:22:08 +0000
Subject: [Nikto-discuss] No web server found on ip:443
In-Reply-To:
References:
Message-ID:
What does curl think when you try to connect to the server?
On Thu, 19 May 2016 08:17 ????? ???, wrote:
> OK, I tried something else.
>
> I ran nikto from my Win 7 machine against the centos server and the
> results were also the same.
>
> I wonder if there's a problem with the way I setup apache. I used a
> self-signed cert for TLS. Nmap tells me the port is open and that:
> 443/tcp open ssl/http Apache httpd 2.2.15 ((CentOS))
>
> Any more ideas?
>
> Thanks
> _______________________________________________
> Nikto is sponsored by Netsparker, a false positive free web application
> security scanner and Netsparker Cloud online scanner.
> Visit https://www.netsparker.com/ for more information.
> _______________________________________________
> Nikto-discuss mail list
> Nikto-discuss at attrition.org
> https://attrition.org/mailman/listinfo/nikto-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From ian at ncsa.jp Thu May 19 02:58:12 2016
From: ian at ncsa.jp (=?UTF-8?B?44Oe44K544K/44O844K644CA44Kk44Ki44Oz?=)
Date: Thu, 19 May 2016 16:58:12 +0900
Subject: [Nikto-discuss] No web server found on ip:443
Message-ID:
>What does curl think when you try to connect to the server?
Robin
?
Thanks for the reply.
Curl told me I was trying to connect via a proxy server, which doesn't have 443 open.
Doh!
All working fine now. Thanks very much to you both.
(Goes off to stand in the corner)
?