Nmap Development mailing list archives
Re: .htaccess + php sec bypass
From: Matias Katz <matias () matiaskatz com>
Date: Mon, 30 Jul 2012 20:24:40 -0300
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hey Guys, Thanks for your support. It's nice to see colleagues who take interest in one's work. After our talk I spoke with Paulino Calderon, he is a friend of mine and a fellow NSE writer from Mexico. He told me he would be glad to do it as well. If you need any feedback from me, please ask. I'd be happy to reply, and help in any part of the script writing process :) Best, Matias Katz Mail: matias () matiaskatz com GPG: 0x8C7C3B7E TW: @matiaskatz Blog: www.matiaskatz.com Buenos Aires, Argentina On 07/30/2012 08:12 PM, Arturo 'Buanzo' Busleiman wrote:
NICE. I'll try to get Matias & Maxi to offer some insight here. On Mon, Jul 30, 2012 at 6:52 PM, Gabriel Lawrence <gabriel.lawrence () gmail com> wrote:I saw that talk and have thought about doing a script... but, i wont be able to look at doing it for a couple weeks, so I imagine someone could bang one out between now and then... But, if nobody does - I'll be happy to step up and do it. gabe On Mon, Jul 30, 2012 at 12:16 PM, Arturo 'Buanzo' Busleiman <buanzo () buanzo com ar> wrote:Hey Guys, A couple of friends and colleagues (Maxi Soler and Matias Katz) shown
the .htaccess security
bypass vuln+tool this week at our favorite security conferences. Any plans to create an nse script to detect this misconfiguration?_______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEUEARECAAYFAlAXF7QACgkQnG5sPox8O37mQACcDgykAfdiXaXO2VSIOO+EURXJ XLUAmJL5lbrtpmHQPE3CkJlR10k8tuc= =+3hR -----END PGP SIGNATURE----- _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- .htaccess + php sec bypass Arturo 'Buanzo' Busleiman (Jul 30)
- Re: .htaccess + php sec bypass Gabriel Lawrence (Jul 30)
- Re: .htaccess + php sec bypass Arturo 'Buanzo' Busleiman (Jul 30)
- Re: .htaccess + php sec bypass Gabriel Lawrence (Jul 30)
- Re: .htaccess + php sec bypass Matias Katz (Aug 01)
- Re: .htaccess + php sec bypass Arturo 'Buanzo' Busleiman (Jul 30)
- Re: .htaccess + php sec bypass Paulino Calderon (Aug 04)
- Re: .htaccess + php sec bypass Paulino Calderon (Aug 17)
- Re: .htaccess + php sec bypass David Fifield (Sep 07)
- Re: .htaccess + php sec bypass Paulino Calderon (Sep 10)
- Re: .htaccess + php sec bypass Arturo 'Buanzo' Busleiman (Jul 30)
- Re: .htaccess + php sec bypass Gabriel Lawrence (Jul 30)