Re: http-php-version output

[David Fifield <david () bamsoftware com>]

On Fri, Nov 26, 2010 at 07:03:52PM -0000, Rob Nicholls wrote:
> Thanks to both of you for your feedback! I've updated the script and will
> commit it shortly.
>
> I've attached a file with all the hashes that were generated, in case anyone
> wants to go back and verify something. I started with IIS 7.5 using FastCGI.
> Versions prior to 5.2.1 didn't seem too happy with IIS 7.5 so to save time I
> quickly moved to Apache 2.0 with PHP as CGI.
>
> I have concerns over some of the remaining hashes, particularly 4.3.1
> against the bunny rabbit logo (as it should fall into the brown dog in grass
> logo range). The only place I've seen it mentioned is at
> http://webinfopedia.blogspot.com/2007/11/php-easter-egg.html where the
> person admits it's not taken from their server (so I presume it could be
> wrong/spoofed). Is it worth me tidying up the logo hashes based on the
> 0php.com info?

Is the bunny logo one you actually measured? Or is it just from a list
on that web page. If the former, go ahead and include whatever you
measured; if the latter, I'm fine with leaving it out.

> Also, it seems that PHP4u 3.0 is based on PHP 4.3.2. Is it worth keeping the
> PHP4u variant? Or can we let it match against 4.3.2?

I had never heard of PHP4u. I seems to be rather a niche thing:
http://www.multimania.co.uk/build/php4u/. I don't see any reference on
that page to a version number, but I would assume that they would build
upon updated versions of PHP. I think it's better to just use the
version number.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/