Nmap Development mailing list archives
Re: [NSE] script to check for weak SSH hostkeys
From: Fyodor <fyodor () insecure org>
Date: Sun, 19 Oct 2008 00:26:08 -0700
On Sat, Oct 18, 2008 at 03:48:27PM +0200, Sven Klemm wrote:
Any opinions about including this and whether it should be in the default category?
I think it is a great script and could be quite valuable to many users! But it doesn't seem very suitable for inclusion within Nmap because it requires a huge data file (bigger than all the rest of Nmap combined when compressed, IIRC) and most people won't have that installed. If people need to get this data file anyway, they might as well get the script at the same time. So I suggest distributing the data files and NSE script separately from Nmap. You could put it in a web page, or an nmap-exp directory. If this sort of thing proves to be required by a whole lot of scripts, maybe at some point we'll host a web CGI or read-only DB for this sort of thing (queryme.nmap.org ;). Obviously that would bring up the same issues as our other "external" scripts. Cheers, -F _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys David Fifield (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 18)
- Re: [NSE] script to check for weak SSH hostkeys Fyodor (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Arturo 'Buanzo' Busleiman (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Sven Klemm (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys Arturo 'Buanzo' Busleiman (Oct 19)
- Re: [NSE] script to check for weak SSH hostkeys David Fifield (Oct 18)