Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] apache-userdir-enum

From: Sven Klemm <sven () c3d2 de>
Date: Tue, 28 Jul 2009 16:07:09 +0200
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

Fyodor wrote:

I don't pretend to know how Apache-specific this issue is, so I'm
not suggesting removing the check.  But I at least want to put a
call out to the list first: if anyone knows non-Apache servers
which are at least occasionally configured to use paths like 
http://servername.com/~user/, please speak up!


I think this behavior is not Apache-specific. Lighttpd has mod_userdir
too, which does the same as the Apache one.

http://redmine.lighttpd.net/projects/lighttpd/wiki/Docs:ModUserDir

Cheers,
Sven
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)

iEYEARECAAYFAkpvBg0ACgkQevlgTHEIT4bSTQCfQPN0Won17gVaUMBbz6I08cn/
5ioAn2gvPxLVQ4uavDxJXDWfDwOYOTta
=wbqi
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: