Hi, On 09/07/2016 05:02 PM, Jiri K. wrote: > the "Directories used for CGI Scanning" NVT does not detect that folder, > but it's easy to add it manually in the Scan Config, so it would solve > the problem for me if the PHP detection NVT tried calls on the CGI > directories as well.
yes that would help with your issue. I will update the NVT in the next few days accordingly. > I also noticed, that when I do the "GET / HTTP/1.0" command, the server > returns "301 Moved Permanently" with "Location: > https://server/appfolder";, so it would be best if the NVT could react to > the 301 return code and try again on the returned location. But I don't > know if such thing is even possible for the NVT or how hard it would be > to implement it. That needs to be implemented / added to the "Web Mirror" and/or "Directory Scanner" NVTs itself. Will see what i can do here. Thanks again for the report. -- Christian Fischer | Greenbone Networks GmbH | http://greenbone.net Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
