dnrops
/
metasploit-framework
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Warn the user about SSLCompression

This commit is contained in:
Tod Beardsley 2014-01-21 16:41:45 -06:00
parent e10f9cc518
commit b8219e3e91
No known key found for this signature in database
GPG Key ID: 1EFFB682ADB9F193
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
lib/msf/core/exploit/http/server.rb
View File

@ -198,6 +198,10 @@ module Exploit::Remote::HttpServer
proto = (datastore["SSL"] ? "https" : "http")
if proto == "https" and datastore['SSLCompression']
print_status("Intentionally using insecure SSL compression. Your operating system might not respect this!")
end
print_status("Using URL: #{proto}://#{opts['ServerHost']}:#{opts['ServerPort']}#{uopts['Path']}")
if (opts['ServerHost'] == '0.0.0.0')