Re: [NSE script] SSH1 Hostkey

[Sven Klemm <sven () c3d2 de>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


|> I've attached a new version that only shows the fingerprint of the
|> key unless verbosity is at least 2 like I did for SSH2 version.
|
|
| Looks good.  This script is a good candidate for replacing my SSHv1
| support script.  There is no reason to test that a server supports
| protocol v1 and then grab the hostkey in another script.

do you think I should print extra text regarding the fact that the
server still supports SSHv1 or will users recognize this when they see
the rsa1 key?

| Also, I know v2 and v1 have little in common but you might think about
| combining your fingerprint scripts.  Think of this as a replacement for
|
| ssh-keyscan -t rsa,dsa,rsa1 host.domain.tld

I had the same idea when implementing this. I will merge the two scripts.

| Also, since you seem to be a NSE ninja ;-), you might think about
| adding a bubblebabble output option for the fingerprints.  Around here
| all the Solaris guys still use that output...

Hehe, implementing bubblebabble is rather easy but I wonder whether
this is really useful to anybody.

Cheers,
Sven

- --
Sven Klemm
http://cthulhu.c3d2.de/~sven/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkiY2w4ACgkQevlgTHEIT4Z+4wCcCsIpgS7IA+NTfmcrl3P5lTmL
YfsAn2VF+OO7oiQ+lx8Dlrgi0/tTzqZr
=l5Gs
-----END PGP SIGNATURE-----

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org