Steve, On Thu, Jan 20, 2011 at 3:37 PM, Steve Pinkham <steve.pink...@gmail.com> wrote: > On 01/18/2011 01:57 PM, Andres Riancho wrote: >> List, >> >> Just wanted to let you know that for the next sprints we have the >> following ideas planned: > <--snip-> >> - ./w3af_console -t , our integration test, will have a way of >> exporting its information so Mr. Hudson will be able to parse it and >> display it properly on its web user interface. This will improve the >> quality of our code by allowing us to perform nightly builds in an >> automated way. We already have Mr. Hudson installed and working but >> unfortunately its not online for you to access. > > I assume testing depends on moth still?
Yes > Does it work with the released > version, and if not how can I help get the next version of Moth out? No, but most tests will pass if you go to the "/var/www" directory in moth and run "sudo svn up". > 4th quarter is my busy time, and now finally to the point when I get a > few spare cycles ;-) > > Interesting behaviour when running the tests: upgraded w3af in a vm for > testing, ran > > ./w3af_console -t and it tells me: > > Results: > ======== > - 171 / 171 scripts have been tested. > - 171 OK. This is a lie! :) > - 43 scripts don't have assert statements. This is the list of scripts > without assert statements: > > Funny thing is, when trying to run one of those scripts directly, it > tells me what is really going on: > > ./w3af_console -s scripts/script-archive_dot_org.w3af > You have to install nltk. > - On Debian based distributions: apt-get install python-nltk - If > that's not working for you, please try the following: wget > http://pyyaml.org/download/pyyaml/PyYAML-3.09.tar.gz tar -xzvf > PyYAML-3.09.tar.gz cd PyYAML-3.09 python setup.py install > cd .. wget > http://nltk.googlecode.com/files/nltk-2.0b9.tar.gz tar -xzvf > nltk-2.0b9.tar.gz cd nltk-2.0b9 python setup.py install Does the error message really looks that odd in your screen or was the copy+paste? > IE, when w3af is broken and fails to run any tests (and therefore > doesn't hit any assertions at all), it marks all tests as passed. This > seems.. Less than ideal. Hehehe, it is, it is. We'll fix it in a near future. Thanks for the bug report :) https://sourceforge.net/apps/trac/w3af/ticket/161214 Regards, > -- > | Steven Pinkham, Security Consultant | > | http://www.mavensecurity.com | > | GPG public key ID CD31CAFB | > > -- Andrés Riancho Director of Web Security at Rapid7 LLC Founder at Bonsai Information Security Project Leader at w3af ------------------------------------------------------------------------------ Protect Your Site and Customers from Malware Attacks Learn about various malware tactics and how to avoid them. Understand malware threats, the impact they can have on your business, and how you can protect your company and customers by using code signing. http://p.sf.net/sfu/oracle-sfdevnl _______________________________________________ W3af-develop mailing list W3af-develop@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/w3af-develop
