Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Draft for hosted cgi

From: Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar>
Date: Fri, 26 May 2006 17:49:18 -0300
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Fyodor wrote:

(I think this is where we should do the checks that the command line
is reasonably sized and that only known-safe options are used) (to
exclude things like -o or --interactive or -iL).  Also, do some sanity
checks such as not letting a single option argument be 2K.


mmm...

What about adding some --safe-only parameter to nmap that would cause it to disable the usage of
- --interactive or --il?

Maybe that list could be configurable / loadable from some user config file.

Seems much better than applying "hey, let's see if we can sanitize this weeeeeeeird user-input" .

- --
Arturo "Buanzo" Busleiman - VPN Mail Project - http://vpnmail.buanzo.com.ar
Consultor en Seguridad Informatica - http://www.buanzo.com.ar

for f in www blog linux-consulting vpnmail; do firefox http://$f.buanzo.com.ar ; done
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEd2nNAlpOsGhXcE0RAp+aAJ9JyFcNF5mgHFICUSQQuNteeW4ejwCdG8LY
vvdwX2jHwjKAs82ebrvlKfc=
=0AaZ
-----END PGP SIGNATURE-----


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Previous By Date Next
Previous By Thread Next

Current thread: