Re: ipswitch IMail web interface

From: Javier Fernandez-Sanguino (jfernandezat_private)
Date: Thu Mar 06 2003 - 01:52:18 PST

Next message: Javier Fernandez-Sanguino: "Re: patch to explain sendmail_ nasl"

Previous message: Vincent Renardias: "[PATCH] small improvement to mysql_unpassworded.nasl"
Next in thread: Renaud Deraison: "Re: ipswitch IMail web interface"
Reply: Renaud Deraison: "Re: ipswitch IMail web interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Michel Arboi wrote:
> I just check the version. I'm not sure this is very important...
> 
	One (generic) question: żis it really necessary to make the 
security_warning depend on some precise version?

I.e, is this:


> serv = egrep(string: banner, pattern: "^Server:.*");
> if(ereg(pattern:"^Server:.*Ipswitch-IMail/(([1-6]\.)|(7\.0[0-5]))", string:serv))
>    security_warning(port);
> 

better than

serv = egrep(string: banner, pattern: "^Server:.*");
if ( "Server:.*Ipswitch-IMail" >< serv ) {
    security_warning(port);

?
Otherwise it seems to me that you are going to get into not reporting 
some Ipswith servers with versions like 9.2543 (several years in the 
future :-)

I don't see the point of limiting the check of the server banner based 
on the versions available _now_, unless these version is used somewhere 
(in the report or in the KB for example)

Regards

Javi

Next message: Javier Fernandez-Sanguino: "Re: patch to explain sendmail_ nasl"
Previous message: Vincent Renardias: "[PATCH] small improvement to mysql_unpassworded.nasl"
Next in thread: Renaud Deraison: "Re: ipswitch IMail web interface"
Reply: Renaud Deraison: "Re: ipswitch IMail web interface"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Mar 06 2003 - 01:53:47 PST