Public bug reported:
A new upstream version (2.5.0) of nikto is available since 2023-12, see
https://github.com/sullo/nikto.git
The new version support ipv6 and lots of other improvements, hundreds of
updates over several years, including the highlights below:
IPv6 support (thanks to @richardleach)
Updated db_checks format uses multiple reference
Hundreds of OSVDB and BID references replaced
Removal of some very old and false-positive prone tests
Decode Netscaler cookies (thanks to @canberkpolat)
Add -usecookies flag to send received cookies with subsequent requests
Add -followredirects flag to signal 3xx responses should be fetched and
tested
Add -noslash to remove trailing slash from directories
Check for indexing on redirect paths
Alert on alt-svc header
Hundreds of bug fixes, test updates and enhancements, and other
optimization changes
Please update Ubuntu packages before 26.04 LTS releasem, because
currently Ubuntu contains ancient, buggy 10 years old version with lots
of false positives - 2.1.4 :(
** Affects: nikto (Ubuntu)
Importance: Undecided
Status: New
** Affects: nikto (Debian)
Importance: Unknown
Status: Unknown
** Bug watch added: Debian Bug tracker #1086582
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086582
** Also affects: nikto (Debian) via
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086582
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2131198
Title:
New upstream version (2.5.0) of nikto security scanner is available
since 2023 !
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nikto/+bug/2131198/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
