Nmap Development mailing list archives
Re: ssl-enum-ciphers with just hostname fails
From: Kent Fritz <kfritz () wolfman devio us>
Date: Sun, 26 Oct 2014 11:11:38 -0400
On Sat, Oct 25, 2014 at 09:45:02PM -0500, Daniel Miller wrote:
Kent, Thanks for bearing with me on this. I looked over the packet capture you sent, and I think I identified the problem: an off-by-one error in reading TLS records! Here's a 1-line patch to possibly fix the problem; let me know if this works for you (you may have to manually make the change depending on line numbers, but the code surrounding it should not have changed much): diff --git a/scripts/ssl-enum-ciphers.nse b/scripts/ssl-enum-ciphers.nse index ac32533..c3b4b5c 100644 --- a/scripts/ssl-enum-ciphers.nse +++ b/scripts/ssl-enum-ciphers.nse @@ -206,7 +206,7 @@ local function try_params(host, port, t) sock:close() return record end - buffer = buffer:sub(i+1) + buffer = buffer:sub(i) end end Please let me know if this solves the problem for you. It may very well solve a lot of problems for unrelated issues, too. Dan
Works great! Thanks for looking at this! Kent. _______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- ssl-enum-ciphers with just hostname fails Kent Fritz (Oct 24)
- Re: ssl-enum-ciphers with just hostname fails Daniel Miller (Oct 24)
- Re: ssl-enum-ciphers with just hostname fails Daniel Miller (Oct 24)
- Re: ssl-enum-ciphers with just hostname fails Kent Fritz (Oct 25)
- Re: ssl-enum-ciphers with just hostname fails Daniel Miller (Oct 25)
- Re: ssl-enum-ciphers with just hostname fails Kent Fritz (Oct 26)
- Re: ssl-enum-ciphers with just hostname fails Daniel Miller (Oct 24)
- Re: ssl-enum-ciphers with just hostname fails Daniel Miller (Oct 24)