-
Notifications
You must be signed in to change notification settings - Fork 192
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Banner update: HTTP - 2018.08.13 #175
Conversation
<param pos="0" name="os.device" value="Firewall"/> | ||
<param pos="0" name="os.family" value="Firewall-1"/> | ||
<param pos="0" name="os.product" value="Firewall-1"/> | ||
<param pos="0" name="os.product" value="GAiA OS"/> |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Had to look this up to confirm. 👍
xml/http_servers.xml
Outdated
</fingerprint> | ||
<fingerprint pattern="^IdeaWebServer\/v?([\d.]+)$"> | ||
<description>Idea Web Server</description> | ||
<example>IdeaWebServer/0.83</example> |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Minor, no example, not much different from what is already there.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Not sure I understand this comment. Did you mean that the following two examples aren't different enough to warrant needing them?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Overall this looks great. I had a few comments but they may not require changes, just clarification.
<description>nginx with version info and/or mods</description> | ||
<example service.version="0.8.53">nginx/0.8.53 + Phusion Passenger 3.0.0 (mod_rails/mod_rack)</example> | ||
<example>nginx/0.8.53</example> | ||
<example>nginx + Phusion Passenger 5.1.11</example> |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Strange. So we get an empty string for the version here? May be worth two fingerprints, one with a version, one without.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We have quite a few other fingerprints that can have an empty capture if the value isn't there. If you like I can split this one up.
This PR is a banner update of the
http_servers.xml
file using data from a Project Sonar survey of HTTP on port 80 that occurred on 2018.08.13.There are additional tweaks to support CPE generation as well as add
hw.device
and similar fields where possible.Note: I am unsure as to why the CPE ordering changed.