Your message dated Thu, 04 Jan 2018 17:00:19 +0000 with message-id <E1eX8sN-0006mM-Ch@fasolo.debian.org> and subject line Bug#834145: fixed in wafw00f 0.9.4-1 has caused the Debian Bug report #834145, regarding ITP: wafw00f -- Identify and fingerprint Web Application Firewall (WAF) to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org immediately.) -- 834145: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=834145 Debian Bug Tracking System Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: submit@bugs.debian.org, pkg-security-team@lists.alioth.debian.org
- Subject: ITP: wafw00f -- Identify and fingerprint Web Application Firewall (WAF)
- From: Samuel Henrique <samueloph@gmail.com>
- Date: Fri, 12 Aug 2016 10:46:06 -0300
- Message-id: <CABwkT9oWubpT9jJ_KT3zgUv1J7xsL+e1fwpqdxaeov-av8fZtg@mail.gmail.com>
Package: wnpp
Owner: "Samuel Henrique" <samueloph@gmail.com>
Severity: wishlist
* Package name : wafw00f
Version : 0.9.4
Upstream Author : Sandro Gauci <sandro@enablesecurity.com>
* URL : https://github.com/EnableSecurity/wafw00f
* License : BSD-3-clause
Programming Lang: Python
Description : identify and fingerprint Web Application Firewall (WAF)
WAFW00F does the following:I intend to maintain this as a part of the pkg-security team, as this is part
- Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions
- If that is not successful, it sends a number of (potentially malicious) HTTP requests and uses simple logic to deduce which WAF it is
- If that is also not successful, it analyses the responses previously returned and uses another simple algorithm to guess if a WAF or security solution is actively responding to our attacks
of an effort to get kali packages within debian.I also will discuss with the team if there's any problem in packaging 0.9.4 (marked as pre-release) or if i will have to package some previously released version.Samuel Henrique O. P. [samueloph]
--- End Message ---
--- Begin Message ---
- To: 834145-close@bugs.debian.org
- Subject: Bug#834145: fixed in wafw00f 0.9.4-1
- From: Samuel Henrique <samueloph@gmail.com>
- Date: Thu, 04 Jan 2018 17:00:19 +0000
- Message-id: <E1eX8sN-0006mM-Ch@fasolo.debian.org>
Source: wafw00f Source-Version: 0.9.4-1 We believe that the bug you reported is fixed in the latest version of wafw00f, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 834145@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Samuel Henrique <samueloph@gmail.com> (supplier of updated wafw00f package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmaster@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 21 Nov 2017 22:46:49 -0200 Source: wafw00f Binary: wafw00f Architecture: source all Version: 0.9.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Security Tools Packaging Team <pkg-security-team@lists.alioth.debian.org> Changed-By: Samuel Henrique <samueloph@gmail.com> Description: wafw00f - identify and fingerprint Web Application Firewall products Closes: 834145 Changes: wafw00f (0.9.4-1) unstable; urgency=medium . * Initial release (closes: #834145), this package was based on work already made by the Kali Linux people, thanks Checksums-Sha1: 4b74e46ad1cc56f381d493b023e85589397787ee 2068 wafw00f_0.9.4-1.dsc 92d50bd484cb08c4445b033b53e78c05e92603bd 18065 wafw00f_0.9.4.orig.tar.gz 2464c51f6695a03dfc1e5e054f79421576e208e0 2980 wafw00f_0.9.4-1.debian.tar.xz 0a58c7b3023523f041671ace216c7f859244340f 18540 wafw00f_0.9.4-1_all.deb 34ba75130f015e740490c9a1e724652529af23f1 5910 wafw00f_0.9.4-1_amd64.buildinfo Checksums-Sha256: 19f64bff1a0edbc204c5ef8fa5ba2db89b8f73191160dce2ab01dca300fec24f 2068 wafw00f_0.9.4-1.dsc b537bf9bf0bb2f9f8a825295ccf219a5fec21fcf42192aec6801f92ab28fd1c7 18065 wafw00f_0.9.4.orig.tar.gz efd87d7bd567218a8de9cca3940763a51e1dce4c2f574efc94a9cb6044e4d69c 2980 wafw00f_0.9.4-1.debian.tar.xz 1c98cad2589261e06bf097938d79a00ef790557142b3315c0a272c9f450a8c15 18540 wafw00f_0.9.4-1_all.deb 123af599c68351f58d50aac55df591ecaa5474ec5407177a8c28b6b271e39ad7 5910 wafw00f_0.9.4-1_amd64.buildinfo Files: fa5d44ccf25ab2a00813834c29f44fdc 2068 misc optional wafw00f_0.9.4-1.dsc 185b1226e71003225e526b4888ce7ac0 18065 misc optional wafw00f_0.9.4.orig.tar.gz 63ca2119aeb7a16a9f2ad300db001933 2980 misc optional wafw00f_0.9.4-1.debian.tar.xz fcfe005b67e80edeae31da47bbccfce2 18540 misc optional wafw00f_0.9.4-1_all.deb f916613f7c7a204dc49de02e7b11a40c 5910 misc optional wafw00f_0.9.4-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEst7mYDbECCn80PEM/A2xu81GC94FAlpBAmAACgkQ/A2xu81G C97Zsg//atsTrlguKtOZx3GdaKaxkg0KvwxLWy4OsVd3XkfBsXi1urtBYlnpWXNi Rl21jGXFry77n5Ebabpwysxb2Gf0yRkKiYW0x/TJ5pDHQlUXHYbkyoEhtiaqQor9 eY3e1sDNuPtwaJhGl0nOnBee0aGmTHS+lp6O2zNIpj/JkmBehL7r7Us6EZ8fCTuP u8CSIU7KoYgAiDgD6rFZGovN1RcPLAxQZcjzeCfVdwCoTGsdpAUB+f4qV8hY6cBE HlA+1/Cbd41IfG8rNdj9je0Muql/i51vr1QWHt4lUDMUWZ3w8dTmsHlEpan0OdYs mjUMN5ChvmEsiVRRJPswIlwREW1wz/sdR36SMIlAoFzUcvdpjiPBisLFzIJ2bViI 450WZ0yg7eiSaMyA2hdoG+PscT4F1Al7dVAB6sDPYQv/lNLFP0GIuaSn+YGL0FLw QkL9KhdhADQVvUJ7NeAfw+0Jsw/75ILUcJRYUi3vd8dBlvZF7LHcN/oBtURBEyIE DLRx8riI2Z8A0u49tlIAHGY1xi1FcIrQwRdriYTwT7KZ5xAoag2ZWWUbdmhKAwbK B37AMx56KqKrg4Hn1TCMkvxAH7Z46wRdz9s5ejkIHlzix4UWnxonnwKkB6LXMMmu 95x7lnzvKoRw4ql9tUzWhOshNyf37GFX/+1aXwA27GHbAsPDcN4= =+67K -----END PGP SIGNATURE-----
--- End Message ---