Hi, the "Directories used for CGI Scanning" NVT does not detect that folder, but it's easy to add it manually in the Scan Config, so it would solve the problem for me if the PHP detection NVT tried calls on the CGI directories as well.
I also noticed, that when I do the "GET / HTTP/1.0" command, the server returns "301 Moved Permanently" with "Location: https://server/appfolder";, so it would be best if the NVT could react to the 301 return code and try again on the returned location. But I don't know if such thing is even possible for the NVT or how hard it would be to implement it. Thank you & Best Regards, Jiri K. On Wed, Sep 7, 2016 at 4:06 PM, Christian Fischer < [email protected]> wrote: > Hi, > > On 09/07/2016 03:42 PM, Jiri K. wrote: > > I'm not sure how the php detection works, but I tried telnet and "GET > > / HTTP/1.0" and I noticed, that the returned header doesn't contain > > PHP version unless I do "GET /appfolder/ HTTP/1.0", could this be the > > reason why OpenVAS doesn't detect PHP on this server? If so, is there > > any way to tell it to try a specific path when doing PHP related > > tests? > > this could be indeed an issue here. The current NVT for detection PHP is > currently trying to detect PHP based on: > > 1. .php files reported by "Web Mirror" NVT with the OID: > 1.3.6.1.4.1.25623.1.0.10662 > 2. a call to index.php on the root directory "/" > 3. a call to the root directory "/" > 4. an exposed file including a phpinfo() call > > For now you could check if the "/appfolder/" is detected within the > "Directories used for CGI Scanning" NVT with the OID: > 1.3.6.1.4.1.25623.1.0.111038 > > If this is detected here i could update the NVT in the next few days to > also check for PHP in such detected folders. > > Thanks for reporting this. > > -- > > Christian Fischer | Greenbone Networks GmbH | http://greenbone.net > Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 > Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner > > > _______________________________________________ > Openvas-discuss mailing list > [email protected] > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
