Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

ssh-hostkey enhancement

From: George Chatzisofroniou <sophron () latthi com>
Date: Tue, 17 Sep 2013 00:17:30 +0300
This enhancement makes a comparison with your known-hosts file. The
new part of the output looks like this:

PORT   STATE SERVICE REASON
22/tcp open  ssh     syn-ack
| ssh-hostkey: Key comparison with known_hosts file:
| GOOD Matches in known_hosts file:
| L7: 195.19.117.60
| L11: foo
| L15: bar
| L19: <unknown>
| WRONG Matches in known_hosts file:
| L3: 195.19.117.61

This behavior is enabled by default. You can turn it off by setting
the 'known-hosts' option to false.

The script is smart enough to know where to find your known hosts
file. It first checks the 'known-hosts-file' option. If it is not set,
it looks in the ssh config file and parses the "UserKnownHostsFile"
directive. If it can't find this directive, it simply looks for the
file in your ~/.ssh/ folder.


-- 
George Chatzisofroniou

Attachment: ssh1.lua
Description:

Attachment: ssh-hostkey.nse
Description: 

_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: