*** Chris wrote: > sometimes it could be useful when scanning a larger network > range containing many webpages to check for a missing HttpOnly > cookie flag to be able to report this. > > The secpod_ssl_cookie_secure_flag_info_disc_vuln.nasl is already > doing this for the missing secure flag. A NVT checking for > the HttpOnly flag could be a near complete copy of the plugin > above. > > Is / was a plugin like this already planned? Not that I know. Maybe a good start for your first NVT? :) Micha
-- Michael Meyer OpenPGP Key: 0xAF069E9152A6EFA6 http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-plugins mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
