Nmap Development mailing list archives
incorrect dates returned by ssl-cert.nse
From: Matt Selsky <selsky () columbia edu>
Date: Sat, 24 Oct 2009 01:00:51 -0400
$ nmap --script=ssl-cert.nse -p 443 host.domain Starting Nmap 5.05BETA1 ( http://nmap.org ) at 2009-10-24 00:43 EDT NSE: Script Scanning completed. Interesting ports on host.domain (192.168.1.1): PORT STATE SERVICE 443/tcp open https| ssl-cert: Subject: commonName=host.domain/ organizationName=Organization/stateOrProvinceName=State/ countryName=Country
| Issuer: organizationName=Equifax/countryName=US | Not valid before: 2008-11-15 21:54:00 | Not valid after: 2009-12-15 22:54:00 | MD5: e71c 81a7 cc93 a3cf 12fd d9e0 45fd d072 |_ SHA-1: 9bbd 2da6 963c 7440 6b75 6ba7 7fea 9da0 2fd4 a266 Nmap done: 1 IP address (1 host up) scanned in 0.15 seconds But the actual certificate dates are: 2008-10-15 21:54:00 2008-11-15 22:54:00 The NSE script has both dates off by a month.Let me know if you need access to my public certificate to verify/ reproduce the problem.
Cheers, -- Matt _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- incorrect dates returned by ssl-cert.nse Matt Selsky (Oct 23)
- Re: incorrect dates returned by ssl-cert.nse David Fifield (Oct 23)