Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: New script - http-favicon.nse

From: dave-san <dave () subverted org>
Date: Thu, 06 Nov 2008 09:42:37 -0700
Kris Katterjohn wrote:

On 11/06/2008 07:00 AM, Vlatko Kosturjak wrote:

Hello!



Hi Kost,


I've just made script which will perform HTTP default favicon
enumeration. It will try to grab /favicon.ico  and from MD5 try to say
what software you are running.



I think this idea is very cool, and I notice your NSE script seems to be based
on a Nessus script[1].  I just want to make sure there are no copyright issues
here, since your script seems to have more in common than just the idea (MD5s
and names for the first six look like verbatim copies).  Correct me if I'm
wrong, but I don't see even a mention of this in your email or script.



This also exists in a Nikto database. That stated, it's still cool as an NSE script.
http://www.cirt.net/nikto/UPDATES/2.03/db_favicon

Dave


I am certainly not a lawyer, so I don't actually know where copyright
infringement begins and ends in situations like this, but I feel something
needs to be done here.

Any input correcting me in this matter is of course welcome!


Kost



Thanks,
Kris Katterjohn

[1] http://list.nessus.org/pipermail/plugins-writers/2005-October/msg00033.html



_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org



_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: