[Openvas-discuss] About Test HTTP dangerous methods

Antu Sanadi santu at secpod.com
Fri Feb 3 08:28:00 CET 2012


Hi,

Plugin is works fine. I didn't  find any false positive.

Case 1:
Here after put request checking for file existence.
If file exists then it will be deleted.

Case 2:
If file does not exists, Checking for the PUT in the response.
So this wont be false positive.

Regards,
Antu Sanadi
SecPod Technologies Pvt Ltd

On Friday 03 February 2012 08:34 AM, sight In wrote:
> Hi folks
>
> about the NVT rule
> Test HTTP dangerous methods
>  1.3.6.1.4.1.25623.1.0.10498
>
> i think it identify http methods for put and delete always cause false 
> positive.
> somebody encountered the same problem?
>
> Thanks
>
>
> _______________________________________________
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20120203/39ed9bf1/attachment.html>


More information about the Openvas-discuss mailing list