📄 qmtp_detect.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器

💻 NASL

字号:

## This script was written by Michel Arboi <arboi@alussinan.org>## GPL#if(description){  script_id(11134);  script_version ("$Revision: 118 $");   script_name(english:"QMTP");   desc["english"] = "For your information, a QMTP/QMQP server is running on this port.QMTP is a proposed replacement of SMTP by D.J. Bernstein.** Note that OpenVAS only runs SMTP tests currently.Risk factor : None";  script_description(english:desc["english"]);   summary["english"] = "Detect QMTP servers";  script_summary(english:summary["english"]);   script_category(ACT_GATHER_INFO);   script_copyright(english:"This script is Copyright (C) 2002 Michel Arboi");  script_family(english:"Service detection");  script_dependencie("find_service.nes", "find_service2.nasl");  script_require_ports(209, 628);  exit(0);}####include("global_settings.inc");include("misc_func.inc");include("network_func.inc");ports = get_kb_list("Services/QMTP");if (! ports) ports = make_list(209, 628);ports = make_list(209, 628);function netstr(str){  local_var	l;  l = strlen(str);  return strcat(l, ":", str, ",");}foreach port (ports)  if (service_is_unknown(port: port) && get_port_state(port))  {    soc = open_sock_tcp(port);    if (soc)    {      msg = strcat(netstr(str: "Message-ID: <1234567890.666.openvas@example.org>From: openvas@example.orgTo: postmaster@example.comOpenVAS is probing this server."), 		netstr(str: "openvas@example.org"),		netstr(str: netstr(str: "postmaster@example.com")));      # QMQP encodes the whole message once more      if (port == 628)      {         msg = netstr(str: msg);         srv = "QMQP";      }      else        srv = "QMTP";send(socket: soc, data: msg);r = recv(socket: soc, length: 1024);close(soc);if (ereg(pattern: "^[1-9][0-9]*:[KZD]", string: r)){  security_note(port);  register_service(port: port, proto: srv);}      if (ereg(pattern: "^[1-9][0-9]*:K", string: r))      {        # K: Message accepted for delivery        # Z: temporary failure        # D: permanent failure        if (is_private_addr(addr: get_host_ip()) ||            is_private_addr(addr: this_host()) )          security_warning(port: port, data: "The " + srv + " server accepts relaying. Make sure it rejects connections from Internet so that spammers cannot useit as an open relay");        else          security_hole(port: port, data: "The "+ srv + " server accepts relaying on or from Internet. Spammers can use it as an open relay.Risk : High");      }    }  }

💿 文件大小 8554 K

👤 上传用户 szjunhui899

📂 所属分类 Linux/Unix编程

🏷️ 相关标签

#windows #linux #漏洞扫描 #源码

⌨️ 快捷键说明

复制代码 Ctrl + C

搜索代码 Ctrl + F

全屏模式 F11

切换主题 Ctrl + Shift + D

显示快捷键 ?

增大字号 Ctrl + =

减小字号 Ctrl + -