Nmap Development mailing list archives
Re: [NSE] ssl-heartbleed additional protocol support
From: Patrik Karlsson <patrik () cqure net>
Date: Wed, 9 Apr 2014 13:58:11 -0400
John, There have been quite a few changes to the script in the last couple of hours. The line you are getting you error on suggests that you are not running the latest version. Do you mind checking if you are still getting the error with the latest version? -Patrik On Wed, Apr 9, 2014 at 1:50 PM, John Bell <blue () unm edu> wrote:
Hello Dev, I downloaded the latest ssl-heartbleed script and it returns an error during execution: [root@host scripts]# nmap --script +ssl-heartbleed.nse [hostname-redacted] -d ....... NSE: ssl-heartbleed against [hostname-redacted]([IP-redacted]) threw an error! /usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:106: attempt to perform arithmetic on local 'ver' (a nil value) stack traceback: /usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:106: in function </usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:59> (...tail calls...) NSE: ssl-heartbleed against alya.unm.edu (129.24.208.184:80) threw an error! /usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:106: attempt to perform arithmetic on local 'ver' (a nil value) stack traceback: /usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:106: in function </usr/bin/../share/nmap/scripts/ssl-heartbleed.nse:59> (...tail callsÅ ) This only happens if I do not specify a port range; the following command does not run the script at all: [root@host scripts]# nmap --script +ssl-heartbleed.nse [hostname-redacted] -p 443 Are these problems due to my build? Running mmap 6.40 -- John Bell UNM Information Security Office of the CIO On 4/9/14, 10:50 AM, "Daniel Miller" <bonsaiviking () gmail com> wrote:On 04/09/2014 11:13 AM, Patrik Karlsson wrote:List, I just committed a new version with additional TLS version support as r32803. I got a bunch of conflicts as I was working off-line and hope that I solved all of them without breaking anything in the process. Thanks, PatrikGood for the most part. There were a couple globals issues and a misspelling, and the pcall "fix" isn't necessary once the sslcert library is require'd. Cleaned up in r32804. You can catch this stuff with either the git hooks or the check script from here: https://secwiki.org/w/Nmap/Code_Standards#Tools_to_help Dan _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/________________________________ CONFIDENTIALITY NOTICE This e-mail, including all attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited unless specifically provided for under the New Mexico Inspection of Public Records Act. If you are not the intended recipient, please contact the sender and destroy all copies of this message. Any views or opinions presented in this e-mail are solely those of the author and do not necessarily represent those of the University of New Mexico.
-- Patrik Karlsson http://www.cqure.net http://twitter.com/nevdull77 http://www.linkedin.com/in/nevdull77 _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] ssl-heartbleed additional protocol support Patrik Karlsson (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support Daniel Miller (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support John Bell (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support Patrik Karlsson (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support Daniel Miller (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support John Bell (Apr 09)
- Re: [NSE] ssl-heartbleed additional protocol support Daniel Miller (Apr 09)