Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Ncat HTTP Digest authentication; nonce strategy

From: David Fifield <david () bamsoftware com>
Date: Thu, 28 Jan 2010 23:01:35 -0700
On Tue, Jan 19, 2010 at 04:38:07PM -0700, David Fifield wrote:

I've been working on integrating the research and coding that Venkat did
last summer on HTTP Digest authentication for Ncat in proxy mode.

http://seclists.org/nmap-dev/2009/q3/773

The way I've been using it is

cd ~/nmap/ncat
svn switch svn://svn.insecure.org/nmap-exp/david/ncat-digest


This is now committed. To use it, don't do anything differently from
what you've been doing.

This will take advantage of Basic if it is offered:

ncat --proxy-type http --proxy <proxy>:<port> --proxy-auth <user>:<pass> <target>

And this will offer both Basic and Digest to connecting clients:

ncat -l --proxy-type http --proxy-auth <user>:<pass>

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: