NoTrace Security Forum

NoTrace Security Forum
Home | Discussioni Attive | Discussioni Recenti | Segnalibro | Msg privati | Utenti | Download | cerca | faq | RSS | Security Chat
Nome Utente:
 Password:
Salva Password
Password Dimenticata?

 Tutti i Forum
 Sistemi Operativi
 Linux/Unix
 problema nikto 2		  Forum Bloccato
 Versione Stampabile Bookmark this Topic Aggiungi Segnalibro
I seguenti utenti stanno leggendo questo Forum Qui c'è:
Autore Discussione Precedente Discussione Discussione Successiva  

volley_3
Advanced Member


Nota: 


672 Messaggi

Inserito il - 08/04/2008 : 23:36:28  Mostra Profilo
alla fine ho dovuto scaricare l'svn perkè il pacchetto nei repo nn c'è
svn co htt*://svn2.assembla[.com]/svn/Nikto_2 nikto2

oppure da htt*://cirt.net/nikto/nikto-current.tar.gz


uso hardy


e quindi
~# ls -la /home/altf4/nikto2/
totale 20
drwxr-xr-x  5 altf4 altf4 4096 2008-04-08 03:03 .
drwxr-xr-x 59 altf4 altf4 4096 2008-04-08 03:31 ..
drwxr-xr-x  3 altf4 altf4 4096 2008-04-08 03:03 documentation
drwxr-xr-x  6 altf4 altf4 4096 2008-04-08 03:27 .svn
drwxr-xr-x  6 altf4 altf4 4096 2008-04-08 03:25 trunk


però se lo lancio anche da root mi da l'errore che nn riesce ad aprire un file

# perl /home/altf4/nikto2/
documentation/ .svn/          trunk/         
root[No-Spam]ubuntu:~# perl /home/altf4/nikto2/trunk/nikto.pl 
- ERROR: Unable to open config file 'config.txt' (Nessun file o directory), only 1 CGI directory defined.
---------------------------------------------------------------------------
- Nikto 2.02/2.03     -     cirt.net
+ ERROR: No host specified

       -Cgidirs+       		scan these CGI dirs: 'none', 'all', or values like "/cgi/ /cgi-a/"
       -dbcheck       		check database and other key files for syntax errors (cannot be abbreviated)
       -evasion+        	ids evasion technique
       -Format+     		save file (-o) format
       -host+       		target host
       -Help        		Extended help information
       -id+          		host authentication to use, format is userid:password
       -mutate+           	Guess additional file names
       -output+       		write output to this file
       -port+       		port to use (default 80)
       -Display+       		turn on/off display outputs
       -ssl 	     		force ssl mode on port
       -Single 	     		Single request mode
       -timeout+     		timeout (default 2 seconds)
       -Tuning+	     		scan tuning
       -update      		update databases and plugins from cirt.net (cannot be abbreviated)
       -Version       		print plugin and database versions
       -vhost+       		virtual host (for Host header)
   + requires a value
   
e quindi vi faccio vedere che quel file gli ho dato chmod 777.. ma niente nn lo apre...

~# ls -la /home/altf4/nikto2/trunk/config.txt
-rwxrwxrwx 1 altf4 altf4 2202 2008-04-08 03:25 /home/altf4/nikto2/trunk/config.txt


e questo è il config.txt
#########################################################################################################
# CONFIG STUFF
#########################################################################################################
# default command line options, can't be an option that requires a value.  used for ALL runs.
# CLIOPTS=-g -a
NIKTODTD=docs/nikto.dtd

# location of nmap to use with port scanning (rather than Nikto internals)
# and any options to pass to it
NMAP=/usr/bin/nmap
NMAPOPTS=-P0 -A

# ports never to scan
SKIPPORTS=21 111

# IDs never to alert on (Note: this only works for IDs loaded from db_tests)
#SKIPIDS=

# if Nikto is having difficulty finding the 'plugins', set the full install path here
# EXECDIR=/home/altf4/nikto2

# the default htt* version to try... can/will be changed as necessary
DEFAULThtt*VER=1.0

# Nikto can submit updated version strings to CIRT.net. It won't do this w/o permission. You should
# send updates because it makes the data better for everyone ;)  *NO* server specific information
# such as IP or name is sent, just the relevant version information.
# UPDATES=yes  #-- ask before each submission if it should send
# UPDATES=no   #-- don't ask, don't send
# UPDATES=auto #-- automatically attempt submission *without prompting*
UPDATES=yes

# Warning if MAX_WARN OK or MOVED responses are retrieved
MAX_WARN=20

# Prompt... if set to 'no' you'll never be asked for anything. Good for automation.
#PROMPTS=no

# cirt.net : set the IP so that updates can work without name resolution
CIRT=209.172.49.178

#########################################################################################################
# PROXY STUFF
#########################################################################################################
PROXYHOST=127.0.0.1
PROXYPORT=8118
#PROXYUSER=proxyuserid
#PROXYPASS=proxypassword

#########################################################################################################
# COOKIE STUFF
#########################################################################################################
# send a cookie with all requests, helpful if auth cookie is needed
#STATIC-COOKIE=cookiename=cookievalue


come posso risolvere?
- ERROR: Unable to open config file 'config.txt' (Nessun file o directory), only 1 CGI directory defined.
  Discussione Precedente Discussione Discussione Successiva  

 Forum Bloccato
 Versione Stampabile Bookmark this Topic Aggiungi Segnalibro
Vai a:
NoTrace Security Forum
 © Nazzareno Schettino
RSS NEWS 		Torna all'inizio della Pagina
Pagina generata in 0,14 secondi. TargatoNA | SuperDeeJay | Snitz Forums 2000