Nmap Development mailing list archives

Re: [NSE] Detection of ProFTPD backdoor

From: David Fifield <david () bamsoftware com>
Date: Tue, 7 Dec 2010 14:45:25 -0800

On Tue, Dec 07, 2010 at 07:11:37AM -0600, Mak Kolybabi wrote:

On 2010-12-06 18:42, Kris Katterjohn wrote:

Maybe check it in the portrule if version data is available?


Please see the attached patch, which will cause the portrule to fail if there is
version data available that indicates ProFTPD 1.3.3c is not running.

This patch also includes several cosmetic changes that make the documentation
and script-args match the name the script was committed under.


Thanks, I committed it. I noticed that the script argument in the code
was not quite right (ftp-proftp-backdoor.cmd instead of
ftp-proftpd-backdoor.cmd) so I fixed that too.

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

[NSE] Detection of ProFTPD backdoor Mak Kolybabi (Dec 06)
- Re: [NSE] Detection of ProFTPD backdoor David Fifield (Dec 06)
  - Re: [NSE] Detection of ProFTPD backdoor Kris Katterjohn (Dec 06)
    - Re: [NSE] Detection of ProFTPD backdoor Mak Kolybabi (Dec 07)
    - Re: [NSE] Detection of ProFTPD backdoor David Fifield (Dec 07)
- Re: [NSE] Detection of ProFTPD backdoor Michael Meyer (Dec 07)
  - Re: [NSE] Detection of ProFTPD backdoor David Fifield (Dec 07)
    - Re: [NSE] Detection of ProFTPD backdoor Michael Meyer (Dec 08)
    - Re: [NSE] Detection of ProFTPD backdoor Michael Meyer (Dec 08)
    - Re: [NSE] Detection of ProFTPD backdoor Mak Kolybabi (Dec 10)
    - Re: [NSE] Detection of ProFTPD backdoor Michael Meyer (Dec 11)
    - Re: [NSE] Detection of ProFTPD backdoor David Fifield (Dec 12)
    - Re: [NSE] Detection of ProFTPD backdoor Michael Meyer (Dec 13)
    - Re: [NSE] Detection of ProFTPD backdoor David Fifield (Dec 29)