recog 2.3.11 → 2.3.16

Sign up to get free protection for your applications and to get access to all the features.
@@ -113,8 +113,49 @@
113
113
  <description>Dovecot Secure IMAP Server</description>
114
114
  <example>Dovecot ready.</example>
115
115
  <example>Dovecot DA ready.</example>
116
+ <param pos="0" name="service.vendor" value="Dovecot"/>
116
117
  <param pos="0" name="service.family" value="Dovecot"/>
117
118
  <param pos="0" name="service.product" value="Dovecot"/>
119
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
120
+ </fingerprint>
121
+
122
+ <fingerprint pattern="^Dovecot \(Ubuntu\) ready\.$">
123
+ <description>Dovecot Secure IMAP Server - Ubuntu variant</description>
124
+ <example>Dovecot (Ubuntu) ready.</example>
125
+ <param pos="0" name="service.vendor" value="Dovecot"/>
126
+ <param pos="0" name="service.family" value="Dovecot"/>
127
+ <param pos="0" name="service.product" value="Dovecot"/>
128
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
129
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
130
+ <param pos="0" name="os.family" value="Linux"/>
131
+ <param pos="0" name="os.product" value="Linux"/>
132
+ <param pos="0" name="os.cpe23" value="cpe:/o:canonical:ubuntu_linux:-"/>
133
+ </fingerprint>
134
+
135
+ <fingerprint pattern="^Dovecot \(Debian\) ready\.$">
136
+ <description>Dovecot Secure IMAP Server - Debian variant</description>
137
+ <example>Dovecot (Debian) ready.</example>
138
+ <param pos="0" name="service.vendor" value="Dovecot"/>
139
+ <param pos="0" name="service.family" value="Dovecot"/>
140
+ <param pos="0" name="service.product" value="Dovecot"/>
141
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
142
+ <param pos="0" name="os.vendor" value="Debian"/>
143
+ <param pos="0" name="os.family" value="Linux"/>
144
+ <param pos="0" name="os.product" value="Linux"/>
145
+ <param pos="0" name="os.cpe23" value="cpe:/o:debian:debian_linux:-"/>
146
+ </fingerprint>
147
+
148
+ <fingerprint pattern="^Dovecot \(Raspbian\) ready\.$">
149
+ <description>Dovecot Secure IMAP Server - Raspbian variant</description>
150
+ <example>Dovecot (Raspbian) ready.</example>
151
+ <param pos="0" name="service.vendor" value="Dovecot"/>
152
+ <param pos="0" name="service.family" value="Dovecot"/>
153
+ <param pos="0" name="service.product" value="Dovecot"/>
154
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
155
+ <param pos="0" name="os.vendor" value="Raspbian"/>
156
+ <param pos="0" name="os.family" value="Linux"/>
157
+ <param pos="0" name="os.product" value="Linux"/>
158
+ <param pos="0" name="hw.product" value="Raspberry Pi"/>
118
159
  </fingerprint>
119
160
 
120
161
  <fingerprint pattern="^Courier-IMAP ready. Copyright \d+-\d+">
@@ -163,6 +204,7 @@
163
204
  <param pos="0" name="service.family" value="Cyrus MTA"/>
164
205
  <param pos="0" name="service.product" value="Cyrus IMAP"/>
165
206
  <param pos="2" name="service.version"/>
207
+ <param pos="0" name="service.cpe23" value="cpe:/a:cmu:cyrus_imap_server:{service.version}"/>
166
208
  <param pos="0" name="os.vendor" value="Apple"/>
167
209
  <param pos="0" name="os.family" value="Mac OS X"/>
168
210
  <param pos="0" name="os.product" value="Mac OS X"/>
@@ -179,6 +221,7 @@
179
221
  <param pos="0" name="service.family" value="Cyrus MTA"/>
180
222
  <param pos="0" name="service.product" value="Cyrus IMAP"/>
181
223
  <param pos="2" name="service.version"/>
224
+ <param pos="0" name="service.cpe23" value="cpe:/a:cmu:cyrus_imap_server:{service.version}"/>
182
225
  <param pos="1" name="host.name"/>
183
226
  </fingerprint>
184
227
 
@@ -180,11 +180,55 @@
180
180
 
181
181
  <fingerprint pattern="^[dD]ovecot (?:DA )?ready\.(?: &lt;.+@(.+)&gt;)?$">
182
182
  <description>Dovecot Secure POP Server</description>
183
+ <example>Dovecot ready.</example>
184
+ <example>Dovecot DA ready.</example>
185
+ <example host.name="foo.bar.baz">Dovecot ready. &lt;fea.13865d.5f06b0a4.DuIvzQI4DAGR9MurahIGJw==@foo.bar.baz&gt;</example>
186
+ <param pos="0" name="service.vendor" value="Dovecot"/>
183
187
  <param pos="0" name="service.family" value="Dovecot"/>
184
188
  <param pos="0" name="service.product" value="Dovecot"/>
189
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
185
190
  <param pos="1" name="host.name"/>
186
191
  </fingerprint>
187
192
 
193
+ <fingerprint pattern="^Dovecot \(Ubuntu\) ready\.$">
194
+ <description>Dovecot Secure POP Server - Ubuntu variant</description>
195
+ <example>Dovecot (Ubuntu) ready.</example>
196
+ <param pos="0" name="service.vendor" value="Dovecot"/>
197
+ <param pos="0" name="service.family" value="Dovecot"/>
198
+ <param pos="0" name="service.product" value="Dovecot"/>
199
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
200
+ <param pos="0" name="os.vendor" value="Ubuntu"/>
201
+ <param pos="0" name="os.family" value="Linux"/>
202
+ <param pos="0" name="os.product" value="Linux"/>
203
+ <param pos="0" name="os.cpe23" value="cpe:/o:canonical:ubuntu_linux:-"/>
204
+ </fingerprint>
205
+
206
+ <fingerprint pattern="^Dovecot \(Debian\) ready\.$">
207
+ <description>Dovecot Secure POP Server - Debian variant</description>
208
+ <example>Dovecot (Debian) ready.</example>
209
+ <param pos="0" name="service.vendor" value="Dovecot"/>
210
+ <param pos="0" name="service.family" value="Dovecot"/>
211
+ <param pos="0" name="service.product" value="Dovecot"/>
212
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
213
+ <param pos="0" name="os.vendor" value="Debian"/>
214
+ <param pos="0" name="os.family" value="Linux"/>
215
+ <param pos="0" name="os.product" value="Linux"/>
216
+ <param pos="0" name="os.cpe23" value="cpe:/o:debian:debian_linux:-"/>
217
+ </fingerprint>
218
+
219
+ <fingerprint pattern="^Dovecot \(Raspbian\) ready\.$">
220
+ <description>Dovecot Secure POP Server - Raspbian variant</description>
221
+ <example>Dovecot (Raspbian) ready.</example>
222
+ <param pos="0" name="service.vendor" value="Dovecot"/>
223
+ <param pos="0" name="service.family" value="Dovecot"/>
224
+ <param pos="0" name="service.product" value="Dovecot"/>
225
+ <param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
226
+ <param pos="0" name="os.vendor" value="Raspbian"/>
227
+ <param pos="0" name="os.family" value="Linux"/>
228
+ <param pos="0" name="os.product" value="Linux"/>
229
+ <param pos="0" name="hw.product" value="Raspberry Pi"/>
230
+ </fingerprint>
231
+
188
232
  <fingerprint pattern="^(\S+) Zimbra POP3 server ready\.?$">
189
233
  <description>VMware Zimbra POP</description>
190
234
  <example host.name="foo.bar">foo.bar Zimbra POP3 server ready</example>
@@ -301,6 +345,19 @@
301
345
  <param pos="1" name="service.version"/>
302
346
  </fingerprint>
303
347
 
348
+ <fingerprint pattern="^Welcome to MailEnable POP3 Server$">
349
+ <description>MailEnable POP3</description>
350
+ <example>Welcome to MailEnable POP3 Server</example>
351
+ <param pos="0" name="os.vendor" value="Microsoft"/>
352
+ <param pos="0" name="os.family" value="Windows"/>
353
+ <param pos="0" name="os.product" value="Windows"/>
354
+ <param pos="0" name="os.cpe23" value="cpe:/o:microsoft:windows:-"/>
355
+ <param pos="0" name="service.vendor" value="MailEnable"/>
356
+ <param pos="0" name="service.family" value="Mail Server"/>
357
+ <param pos="0" name="service.product" value="MailEnable"/>
358
+ <param pos="0" name="service.cpe23" value="cpe:/a:mailenable:mailenable:-"/>
359
+ </fingerprint>
360
+
304
361
  <!--
305
362
  ; Mandrake 8.1 - uses UW IMAP
306
363
  ; +OK POP3 mandrake81-f540k v2000.70mdk server ready
@@ -330,7 +387,6 @@
330
387
  // +OK Gordano Messaging Suite POP3 server ready <13501095613509@hollandcanadaline.com>
331
388
  // +OK unitechna.lt Merak 8.9.1 POP3 Sun, 22 Jul 2007 23:16:25 +0300 <20070722231625@unitechna.lt>
332
389
  // +OK Cubic Circle's v1.31 1998/05/13 POP3 ready <0c9300004104a246@www.dvdld.co.za>
333
- // +OK Welcome to MailEnable POP3 Server
334
390
  // +OK GroupWise POP3 server ready
335
391
  // +OK POP3 AnalogX Proxy 4.14 (Release) ready.
336
392
  // +OK lojack.com.ar POP MDaemon 9.6.0 ready <MDAEMON-F200707232110.AA1001241MD4604@lojack.com.ar>
@@ -471,7 +527,6 @@
471
527
  +OK studiovisuals.com POP3 Server (Version 1.020h) ready.
472
528
  +OK themeekermall.com POP3 Server (Version 1.020h) ready.
473
529
  +OK unitechna.lt Merak 8.9.1 POP3 Sun, 22 Jul 2007 23:16:25 +0300 <20070722231625@unitechna.lt>
474
- +OK Welcome to MailEnable POP3 Server
475
530
  +OK X1 NT-POP3 Server 2436681011.monstercommercesites.com (IMail 7.15 560907-1)
476
531
  +OK X1 NT-POP3 Server Calvin-Serv (IMail 8.22 1107-1)
477
532
  +OK X1 NT-POP3 Server chealsea.com.cn (IMail 8.15 16990-1)
@@ -77,6 +77,7 @@
77
77
  <param pos="0" name="service.family" value="Mail Server"/>
78
78
  <param pos="0" name="service.product" value="Mail Server"/>
79
79
  <param pos="1" name="service.version"/>
80
+ <param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
80
81
  </fingerprint>
81
82
 
82
83
  <fingerprint pattern="^^(?:(\S+) +)?ArGoSoft Mail Server Freeware, Version [^ ]+ \(([^ ]+\.[^ ]+\.[^ ]+\.[^ ]+)\) *$">
@@ -91,6 +92,7 @@
91
92
  <param pos="0" name="service.family" value="Mail Server"/>
92
93
  <param pos="0" name="service.product" value="Mail Server"/>
93
94
  <param pos="2" name="service.version"/>
95
+ <param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
94
96
  <param pos="1" name="host.name"/>
95
97
  </fingerprint>
96
98
 
@@ -108,6 +110,7 @@
108
110
  <param pos="0" name="service.product" value="Mail Server"/>
109
111
  <param pos="1" name="host.name"/>
110
112
  <param pos="2" name="service.version"/>
113
+ <param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
111
114
  </fingerprint>
112
115
 
113
116
  <fingerprint pattern="^([^ ]+) +AppleShare IP Mail Server ([^ ]+\.[\d.]+) SMTP Server Ready *$">
@@ -861,6 +864,7 @@
861
864
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
862
865
  <param pos="1" name="host.name"/>
863
866
  <param pos="2" name="service.version"/>
867
+ <param pos="0" name="service.cpe23" value="cpe:/a:ibm:lotus_domino:{service.version}"/>
864
868
  <param pos="3" name="system.time"/>
865
869
  </fingerprint>
866
870
 
@@ -940,11 +944,13 @@
940
944
 
941
945
  <fingerprint pattern="^([^ ]+) Postfix \(Postfix-([^ ]+)-([^ ]+)\) \(([^ ]+)\) *$">
942
946
  <description>Postfix - version + build, followed by os</description>
947
+ <param pos="0" name="service.vendor" value="Postfix"/>
943
948
  <param pos="0" name="service.family" value="Postfix"/>
944
949
  <param pos="0" name="service.product" value="Postfix"/>
945
950
  <param pos="1" name="host.name"/>
946
951
  <param pos="2" name="service.version"/>
947
952
  <param pos="3" name="service.version.version"/>
953
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
948
954
  <param pos="4" name="postfix.os.info"/>
949
955
  </fingerprint>
950
956
 
@@ -952,27 +958,33 @@
952
958
  <description>Postfix - Std semantic versioning, w/ optional parens</description>
953
959
  <example service.version="3.1.4">foo.bar ESMTP Postfix (3.1.4)</example>
954
960
  <example service.version="2.7.1">foo.bar ESMTP Postfix 2.7.1</example>
961
+ <param pos="0" name="service.vendor" value="Postfix"/>
955
962
  <param pos="0" name="service.family" value="Postfix"/>
956
963
  <param pos="0" name="service.product" value="Postfix"/>
957
964
  <param pos="1" name="host.name"/>
958
965
  <param pos="2" name="service.version"/>
966
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
959
967
  </fingerprint>
960
968
 
961
969
  <fingerprint pattern="^([^ ]+) ESMTP Postfix \((?:Postfix-)?([\d.]+)-([^ ]+)\)$">
962
970
  <description>Postfix - version + build</description>
963
971
  <example service.version="2.8" service.version.version="20100306">foo.bar ESMTP Postfix (2.8-20100306)</example>
972
+ <param pos="0" name="service.vendor" value="Postfix"/>
964
973
  <param pos="0" name="service.family" value="Postfix"/>
965
974
  <param pos="0" name="service.product" value="Postfix"/>
966
975
  <param pos="1" name="host.name"/>
967
976
  <param pos="2" name="service.version"/>
968
977
  <param pos="3" name="service.version.version"/>
978
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
969
979
  </fingerprint>
970
980
 
971
981
  <fingerprint pattern="^([^ ]+) +E?SMTP Postfix \(Ubuntu\)$">
972
982
  <description>Postfix - Ubuntu</description>
973
983
  <example>foo.bar ESMTP Postfix (Ubuntu)</example>
984
+ <param pos="0" name="service.vendor" value="Postfix"/>
974
985
  <param pos="0" name="service.family" value="Postfix"/>
975
986
  <param pos="0" name="service.product" value="Postfix"/>
987
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
976
988
  <param pos="1" name="host.name"/>
977
989
  <param pos="0" name="os.vendor" value="Ubuntu"/>
978
990
  <param pos="0" name="os.family" value="Linux"/>
@@ -984,8 +996,10 @@
984
996
  <description>Postfix - Ubuntu, Mail-in-a-Box package</description>
985
997
  <example>foo.bar ESMTP Hi, I'm a Mail-in-a-Box (Ubuntu/Postfix; see https://mailinabox.email/)</example>
986
998
  <example>foo.bar Hi, I'm a Mail-in-a-Box (Ubuntu/Postfix; see https://mailinabox.email/)</example>
999
+ <param pos="0" name="service.vendor" value="Postfix"/>
987
1000
  <param pos="0" name="service.family" value="Postfix"/>
988
1001
  <param pos="0" name="service.product" value="Postfix"/>
1002
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
989
1003
  <param pos="1" name="host.name"/>
990
1004
  <param pos="0" name="os.vendor" value="Ubuntu"/>
991
1005
  <param pos="0" name="os.family" value="Linux"/>
@@ -996,8 +1010,10 @@
996
1010
  <fingerprint pattern="^([^ ]+) +E?SMTP Postfix \(Debian/GNU\)$">
997
1011
  <description>Postfix - Debian</description>
998
1012
  <example>foo.bar ESMTP Postfix (Debian/GNU)</example>
1013
+ <param pos="0" name="service.vendor" value="Postfix"/>
999
1014
  <param pos="0" name="service.family" value="Postfix"/>
1000
1015
  <param pos="0" name="service.product" value="Postfix"/>
1016
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
1001
1017
  <param pos="1" name="host.name"/>
1002
1018
  <param pos="0" name="os.vendor" value="Debian"/>
1003
1019
  <param pos="0" name="os.family" value="Linux"/>
@@ -1008,8 +1024,10 @@
1008
1024
  <fingerprint pattern="^([^ ]+) ESMTP.* Postfix *\(.+\) *$">
1009
1025
  <description>Postfix - generic banner with amusing comments in parentheses</description>
1010
1026
  <example>foo.bar ESMTP Postfix (lol)</example>
1027
+ <param pos="0" name="service.vendor" value="Postfix"/>
1011
1028
  <param pos="0" name="service.family" value="Postfix"/>
1012
1029
  <param pos="0" name="service.product" value="Postfix"/>
1030
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
1013
1031
  <param pos="1" name="host.name"/>
1014
1032
  </fingerprint>
1015
1033
 
@@ -1017,23 +1035,29 @@
1017
1035
  <description>Postfix - generic banner</description>
1018
1036
  <example>foo.bar ESMTP Postfix</example>
1019
1037
  <example>foo.bar SMTP Postfix</example>
1038
+ <param pos="0" name="service.vendor" value="Postfix"/>
1020
1039
  <param pos="0" name="service.family" value="Postfix"/>
1021
1040
  <param pos="0" name="service.product" value="Postfix"/>
1041
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
1022
1042
  <param pos="1" name="host.name"/>
1023
1043
  </fingerprint>
1024
1044
 
1025
1045
  <fingerprint pattern="^ *ESMTP Postfix$">
1026
1046
  <description>Postfix - banner without hostname or version</description>
1027
1047
  <example>ESMTP Postfix</example>
1048
+ <param pos="0" name="service.vendor" value="Postfix"/>
1028
1049
  <param pos="0" name="service.family" value="Postfix"/>
1029
1050
  <param pos="0" name="service.product" value="Postfix"/>
1051
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
1030
1052
  </fingerprint>
1031
1053
 
1032
1054
  <fingerprint pattern="^(?i)([^ ]+) POSTFIX$">
1033
1055
  <description>Postfix - generic w/o ESMTP</description>
1034
1056
  <example host.name="foo.bar">foo.bar Postfix</example>
1057
+ <param pos="0" name="service.vendor" value="Postfix"/>
1035
1058
  <param pos="0" name="service.family" value="Postfix"/>
1036
1059
  <param pos="0" name="service.product" value="Postfix"/>
1060
+ <param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
1037
1061
  <param pos="1" name="host.name"/>
1038
1062
  </fingerprint>
1039
1063
 
@@ -1070,13 +1094,16 @@
1070
1094
  <fingerprint pattern="^Sendmail ESMTP ready$">
1071
1095
  <description>Sendmail - short banner w/o hostname, version, platform, or date.</description>
1072
1096
  <example>Sendmail ESMTP ready</example>
1097
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1073
1098
  <param pos="0" name="service.family" value="Sendmail"/>
1074
1099
  <param pos="0" name="service.product" value="Sendmail"/>
1100
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:-"/>
1075
1101
  </fingerprint>
1076
1102
 
1077
1103
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +([^ ]+) \(PHNE_([^ ]+)\) */ *(.+); *(.+) \(.+\)$">
1078
1104
  <description>Sendmail - HP-UX with a PHNE (HP Networking patch) installed</description>
1079
1105
  <example host.name="foo.bar" service.version="8.8.6" sendmail.config.version="8.7.1">foo.bar ESMTP Sendmail 8.8.6 (PHNE_14041)/8.7.1; Tue, 6 Feb 2001 10:04:32 -0300 (SAT)</example>
1106
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1080
1107
  <param pos="0" name="service.family" value="Sendmail"/>
1081
1108
  <param pos="0" name="service.product" value="Sendmail"/>
1082
1109
  <param pos="0" name="os.vendor" value="HP"/>
@@ -1086,6 +1113,7 @@
1086
1113
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1087
1114
  <param pos="1" name="host.name"/>
1088
1115
  <param pos="2" name="service.version"/>
1116
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1089
1117
  <param pos="3" name="sendmail.hpux.phne.version"/>
1090
1118
  <param pos="4" name="sendmail.config.version"/>
1091
1119
  <param pos="5" name="system.time"/>
@@ -1094,6 +1122,7 @@
1094
1122
  <fingerprint pattern="^(\S+) ESMTP Sendmail \S+ version ([\d\.]+) - Revision \S+ HP-UX([\d\.]+).*(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ \w\w\w)$">
1095
1123
  <description>Sendmail - HP-UX</description>
1096
1124
  <example host.name="foo.bar" os.version="11.31" service.version="8.13.3">foo.bar ESMTP Sendmail @(#)Sendmail version 8.13.3 - Revision 1.004:: HP-UX11.31 - 03rd February,2010/8.11.1; Wed, 20 May 2015 23:35:38 GMT</example>
1125
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1097
1126
  <param pos="0" name="service.family" value="Sendmail"/>
1098
1127
  <param pos="0" name="service.product" value="Sendmail"/>
1099
1128
  <param pos="0" name="os.vendor" value="HP"/>
@@ -1104,12 +1133,14 @@
1104
1133
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss z"/>
1105
1134
  <param pos="1" name="host.name"/>
1106
1135
  <param pos="2" name="service.version"/>
1136
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1107
1137
  <param pos="4" name="system.time"/>
1108
1138
  </fingerprint>
1109
1139
 
1110
1140
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +([^ ]+)/UW([^ ]+) ready at *(.+) \(.+\) *$">
1111
1141
  <description>Sendmail - Unixware</description>
1112
1142
  <example service.version="8.8.7">foo.bar ESMTP Sendmail 8.8.7/UW7.1.0 ready at Tue, 6 Feb 2001 16:39:30 -0300 (GMT-0300)</example>
1143
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1113
1144
  <param pos="0" name="service.family" value="Sendmail"/>
1114
1145
  <param pos="0" name="service.product" value="Sendmail"/>
1115
1146
  <param pos="0" name="os.vendor" value="SCO"/>
@@ -1118,6 +1149,7 @@
1118
1149
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1119
1150
  <param pos="1" name="host.name"/>
1120
1151
  <param pos="2" name="service.version"/>
1152
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1121
1153
  <param pos="3" name="os.version"/>
1122
1154
  <param pos="4" name="system.time"/>
1123
1155
  </fingerprint>
@@ -1125,6 +1157,7 @@
1125
1157
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail AIX([^/]+)/UCB ([^;]+); (.+) \(.+\)$">
1126
1158
  <description>Sendmail - AIX (UCB variant)</description>
1127
1159
  <example os.version="4.2" service.version="8.7">foo.bar ESMTP Sendmail AIX4.2/UCB 8.7; Sun, 29 Jul 2001 22:34:37 -0400 (EDT)</example>
1160
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1128
1161
  <param pos="0" name="service.family" value="Sendmail"/>
1129
1162
  <param pos="0" name="service.product" value="Sendmail"/>
1130
1163
  <param pos="0" name="os.vendor" value="IBM"/>
@@ -1135,12 +1168,14 @@
1135
1168
  <param pos="2" name="os.version"/>
1136
1169
  <param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
1137
1170
  <param pos="3" name="service.version"/>
1171
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1138
1172
  <param pos="4" name="system.time"/>
1139
1173
  </fingerprint>
1140
1174
 
1141
1175
  <fingerprint pattern="^([^ ]+) Sendmail AIX([^/]+)/UCB ([^/]+)/([^ ]+) ready at (.+)$">
1142
1176
  <description>Sendmail - AIX (UCB/ready at variant)</description>
1143
1177
  <example>foo.bar Sendmail AIX 4.1/UCB 5.64/4.03 ready at Mon, 30 Jul 2001 00:42:21 -0500</example>
1178
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1144
1179
  <param pos="0" name="service.family" value="Sendmail"/>
1145
1180
  <param pos="0" name="service.product" value="Sendmail"/>
1146
1181
  <param pos="0" name="os.vendor" value="IBM"/>
@@ -1151,6 +1186,7 @@
1151
1186
  <param pos="2" name="os.version"/>
1152
1187
  <param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
1153
1188
  <param pos="3" name="service.version"/>
1189
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1154
1190
  <param pos="4" name="sendmail.config.version"/>
1155
1191
  <param pos="5" name="system.time"/>
1156
1192
  </fingerprint>
@@ -1159,6 +1195,7 @@
1159
1195
  <description>Sendmail - AIX</description>
1160
1196
  <example host.name="foo.bar" os.version="4.2" service.version="8.7" sendmail.config.version="8.8">foo.bar ESMTP Sendmail AIX4.2/8.7/8.8; Sun, 29 Jul 2001 22:34:37 -0400 (EDT)</example>
1161
1197
  <example host.name="foo.bar" os.version="5.1" service.version="8.11.6p2" sendmail.config.version="8.11.0">foo.bar ESMTP Sendmail AIX5.1/8.11.6p2/8.11.0; Fri, 28 Aug 1970 19:42:05 -0800</example>
1198
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1162
1199
  <param pos="0" name="service.family" value="Sendmail"/>
1163
1200
  <param pos="0" name="service.product" value="Sendmail"/>
1164
1201
  <param pos="0" name="os.vendor" value="IBM"/>
@@ -1169,6 +1206,7 @@
1169
1206
  <param pos="2" name="os.version"/>
1170
1207
  <param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
1171
1208
  <param pos="3" name="service.version"/>
1209
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1172
1210
  <param pos="4" name="sendmail.config.version"/>
1173
1211
  <param pos="5" name="system.time"/>
1174
1212
  </fingerprint>
@@ -1176,6 +1214,7 @@
1176
1214
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/SuSE Linux ([^;]+); (.+)$">
1177
1215
  <description>Sendmail - SuSE Linux</description>
1178
1216
  <example>foo.bar ESMTP Sendmail 8.9.3/8.9.3/SuSE Linux 8.9.3-0.1; Mon, 30 Jul 2001 04:48:54 +0200</example>
1217
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1179
1218
  <param pos="0" name="service.family" value="Sendmail"/>
1180
1219
  <param pos="0" name="service.product" value="Sendmail"/>
1181
1220
  <param pos="0" name="os.vendor" value="SuSE"/>
@@ -1185,6 +1224,7 @@
1185
1224
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1186
1225
  <param pos="1" name="host.name"/>
1187
1226
  <param pos="2" name="service.version"/>
1227
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1188
1228
  <param pos="3" name="sendmail.config.version"/>
1189
1229
  <param pos="4" name="sendmail.vendor.version"/>
1190
1230
  <param pos="5" name="system.time"/>
@@ -1193,6 +1233,7 @@
1193
1233
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)\+Sun/([^ ]+); (.+)$">
1194
1234
  <description>Sendmail - Solaris with date (no time offeset variant)</description>
1195
1235
  <example>foo.bar ESMTP Sendmail 8.9.3+Sun/8.9.1; Mon, 30 Jul 2001 02:50:22 GMT</example>
1236
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1196
1237
  <param pos="0" name="service.family" value="Sendmail"/>
1197
1238
  <param pos="0" name="service.product" value="Sendmail"/>
1198
1239
  <param pos="0" name="os.vendor" value="Sun"/>
@@ -1202,6 +1243,7 @@
1202
1243
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss zzz"/>
1203
1244
  <param pos="1" name="host.name"/>
1204
1245
  <param pos="2" name="service.version"/>
1246
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1205
1247
  <param pos="3" name="sendmail.config.version"/>
1206
1248
  <param pos="4" name="system.time"/>
1207
1249
  </fingerprint>
@@ -1209,6 +1251,7 @@
1209
1251
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)\+Sun/([^ ]+) ready at (.+) \(.+\)$">
1210
1252
  <description>Sendmail - Solaris with date (ready variant)</description>
1211
1253
  <example>foo.bar ESMTP Sendmail 8.8.8+Sun/8.6.4 ready at Thu, 15 Nov 2000 11:40:32 -0800 (PST)</example>
1254
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1212
1255
  <param pos="0" name="service.family" value="Sendmail"/>
1213
1256
  <param pos="0" name="service.product" value="Sendmail"/>
1214
1257
  <param pos="0" name="os.vendor" value="Sun"/>
@@ -1218,6 +1261,7 @@
1218
1261
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1219
1262
  <param pos="1" name="host.name"/>
1220
1263
  <param pos="2" name="service.version"/>
1264
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1221
1265
  <param pos="3" name="sendmail.config.version"/>
1222
1266
  <param pos="4" name="system.time"/>
1223
1267
  </fingerprint>
@@ -1226,6 +1270,7 @@
1226
1270
  <description>Sendmail - Debian</description>
1227
1271
  <example service.version="8.12.0.Beta7" sendmail.config.version="8.12.0.Beta7" sendmail.vendor.version="8.12.0.Beta7-1">foo.bar ESMTP Debian Sendmail 8.12.0.Beta7/8.12.0.Beta7/Debian 8.12.0.Beta7-1; Sun, 29 Jul 2001 18:52:20 -0800</example>
1228
1272
  <example service.version="8.11.0" sendmail.config.version="8.9.3" sendmail.vendor.version="8.9.3-21">foo.bar ESMTP Sendmail 8.11.0/8.9.3/Debian 8.9.3-21; Sun, 29 Jul 2001 19:51:00 -0700</example>
1273
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1229
1274
  <param pos="0" name="service.family" value="Sendmail"/>
1230
1275
  <param pos="0" name="service.product" value="Sendmail"/>
1231
1276
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1235,6 +1280,7 @@
1235
1280
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1236
1281
  <param pos="1" name="host.name"/>
1237
1282
  <param pos="2" name="service.version"/>
1283
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1238
1284
  <param pos="3" name="sendmail.config.version"/>
1239
1285
  <param pos="4" name="sendmail.vendor.version"/>
1240
1286
  <param pos="5" name="system.time"/>
@@ -1244,6 +1290,7 @@
1244
1290
  <description>Sendmail - Debian 7.x (wheezy)</description>
1245
1291
  <example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4+wheezy1; Thu, 30 Nov 2017 10:33:05 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1246
1292
  <example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4+deb7u1; Thu, 30 Nov 2017 11:00:33 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1293
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1247
1294
  <param pos="0" name="service.family" value="Sendmail"/>
1248
1295
  <param pos="0" name="service.product" value="Sendmail"/>
1249
1296
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1254,6 +1301,7 @@
1254
1301
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1255
1302
  <param pos="1" name="host.name"/>
1256
1303
  <param pos="2" name="service.version"/>
1304
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1257
1305
  <param pos="3" name="sendmail.config.version"/>
1258
1306
  <param pos="4" name="system.time"/>
1259
1307
  </fingerprint>
@@ -1261,6 +1309,7 @@
1261
1309
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+deb8u\d; (.+); .*$">
1262
1310
  <description>Sendmail - Debian 8.x (jessie)</description>
1263
1311
  <example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-8+deb8u2; Thu, 30 Nov 2017 10:25:48 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1312
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1264
1313
  <param pos="0" name="service.family" value="Sendmail"/>
1265
1314
  <param pos="0" name="service.product" value="Sendmail"/>
1266
1315
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1271,6 +1320,7 @@
1271
1320
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1272
1321
  <param pos="1" name="host.name"/>
1273
1322
  <param pos="2" name="service.version"/>
1323
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1274
1324
  <param pos="3" name="sendmail.config.version"/>
1275
1325
  <param pos="4" name="system.time"/>
1276
1326
  </fingerprint>
@@ -1278,6 +1328,7 @@
1278
1328
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+lenny\d; (.+); .*$">
1279
1329
  <description>Sendmail - Debian 5.x (lenny)</description>
1280
1330
  <example service.version="8.14.3">foo.bar ESMTP Sendmail 8.14.3/8.14.3/Debian-5+lenny1; Thu, 30 Nov 2017 12:29:40 +0300; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1331
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1281
1332
  <param pos="0" name="service.family" value="Sendmail"/>
1282
1333
  <param pos="0" name="service.product" value="Sendmail"/>
1283
1334
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1288,6 +1339,7 @@
1288
1339
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1289
1340
  <param pos="1" name="host.name"/>
1290
1341
  <param pos="2" name="service.version"/>
1342
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1291
1343
  <param pos="3" name="sendmail.config.version"/>
1292
1344
  <param pos="4" name="system.time"/>
1293
1345
  </fingerprint>
@@ -1295,6 +1347,7 @@
1295
1347
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+etch\d; (.+); .*$">
1296
1348
  <description>Sendmail - Debian 4.x (etch)</description>
1297
1349
  <example service.version="8.13.8" sendmail.config.version="8.13.8">foo.bar ESMTP Sendmail 8.13.8/8.13.8/Debian-3+etch1; Thu, 30 Nov 2017 10:28:23 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1350
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1298
1351
  <param pos="0" name="service.family" value="Sendmail"/>
1299
1352
  <param pos="0" name="service.product" value="Sendmail"/>
1300
1353
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1305,6 +1358,7 @@
1305
1358
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1306
1359
  <param pos="1" name="host.name"/>
1307
1360
  <param pos="2" name="service.version"/>
1361
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1308
1362
  <param pos="3" name="sendmail.config.version"/>
1309
1363
  <param pos="4" name="system.time"/>
1310
1364
  </fingerprint>
@@ -1312,6 +1366,7 @@
1312
1366
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\dsarge\d; (.+); .*$">
1313
1367
  <description>Sendmail - Debian 3.1 (sarge)</description>
1314
1368
  <example service.version="8.13.4">foo.bar ESMTP Sendmail 8.13.4/8.13.4/Debian-3sarge1; Thu, 30 Nov 2017 10:55:47 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1369
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1315
1370
  <param pos="0" name="service.family" value="Sendmail"/>
1316
1371
  <param pos="0" name="service.product" value="Sendmail"/>
1317
1372
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1322,6 +1377,7 @@
1322
1377
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1323
1378
  <param pos="1" name="host.name"/>
1324
1379
  <param pos="2" name="service.version"/>
1380
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1325
1381
  <param pos="3" name="sendmail.config.version"/>
1326
1382
  <param pos="4" name="system.time"/>
1327
1383
  </fingerprint>
@@ -1331,6 +1387,7 @@
1331
1387
  <example service.version="8.15.2">foo.bar ESMTP Sendmail 8.15.2/8.15.2/Debian-3; Thu, 30 Nov 2017 10:55:50 +0200; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1332
1388
  <example service.version="8.14.3">foo.bar ESMTP Sendmail 8.14.3/8.14.3/Debian-9.4; Thu, 30 Nov 2017 10:11:54 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1333
1389
  <example service.version="8.14.2">foo.bar ESMTP Sendmail 8.14.2/8.14.2/Debian-2build1; Thu, 30 Nov 2017 04:09:50 -0600; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1390
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1334
1391
  <param pos="0" name="service.family" value="Sendmail"/>
1335
1392
  <param pos="0" name="service.product" value="Sendmail"/>
1336
1393
  <param pos="0" name="os.vendor" value="Debian"/>
@@ -1340,6 +1397,7 @@
1340
1397
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1341
1398
  <param pos="1" name="host.name"/>
1342
1399
  <param pos="2" name="service.version"/>
1400
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1343
1401
  <param pos="3" name="sendmail.config.version"/>
1344
1402
  <param pos="4" name="system.time"/>
1345
1403
  </fingerprint>
@@ -1348,6 +1406,7 @@
1348
1406
  <description>Sendmail - Ubuntu</description>
1349
1407
  <example service.version="8.13.5.20060308">foo.bar ESMTP Sendmail 8.13.5.20060308/8.13.5/Debian-3ubuntu1.1; Fri, 24 Jul 2009 01:41:21 -0700; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1350
1408
  <example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4.1ubuntu1; Thu, 30 Nov 2017 11:00:30 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
1409
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1351
1410
  <param pos="0" name="service.family" value="Sendmail"/>
1352
1411
  <param pos="0" name="service.product" value="Sendmail"/>
1353
1412
  <param pos="0" name="os.vendor" value="Ubuntu"/>
@@ -1357,12 +1416,14 @@
1357
1416
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1358
1417
  <param pos="1" name="host.name"/>
1359
1418
  <param pos="2" name="service.version"/>
1419
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1360
1420
  <param pos="3" name="system.time"/>
1361
1421
  </fingerprint>
1362
1422
 
1363
1423
  <fingerprint pattern="^([^ ]+) (?:E?SMTP )?Sendmail SMI-([^/]+)/(SMI-SVR4) ready at (.+)$">
1364
1424
  <description>Sendmail - Solaris (SMI variant)</description>
1365
1425
  <example>foo.bar Sendmail SMI-8.6/SMI-SVR4 ready at Sun, 29 Jul 2001 22:58:46 -0400</example>
1426
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1366
1427
  <param pos="0" name="service.family" value="Sendmail"/>
1367
1428
  <param pos="0" name="service.product" value="Sendmail"/>
1368
1429
  <param pos="0" name="os.vendor" value="Sun"/>
@@ -1372,6 +1433,7 @@
1372
1433
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1373
1434
  <param pos="1" name="host.name"/>
1374
1435
  <param pos="2" name="service.version"/>
1436
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1375
1437
  <param pos="3" name="sendmail.config.version"/>
1376
1438
  <param pos="4" name="system.time"/>
1377
1439
  </fingerprint>
@@ -1379,6 +1441,7 @@
1379
1441
  <fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)/(linuxconf); (.+)$">
1380
1442
  <description>Sendmail - unknown platform (linuxconf variant)</description>
1381
1443
  <example>foo.bar ESMTP Sendmail 8.9.3/linuxconf; Sun, 29 Jul 2001 22:48:28 -0400</example>
1444
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1382
1445
  <param pos="0" name="service.family" value="Sendmail"/>
1383
1446
  <param pos="0" name="service.product" value="Sendmail"/>
1384
1447
  <param pos="0" name="os.family" value="Linux"/>
@@ -1386,6 +1449,7 @@
1386
1449
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1387
1450
  <param pos="1" name="host.name"/>
1388
1451
  <param pos="2" name="service.version"/>
1452
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1389
1453
  <param pos="3" name="sendmail.config.version"/>
1390
1454
  <param pos="4" name="system.time"/>
1391
1455
  </fingerprint>
@@ -1417,10 +1481,12 @@
1417
1481
  <example host.name="foo.bar" service.version="8.8.8" sendmail.config.version="8.8.9">foo.bar ESMTP blah Sendmail 8.8.8/8.8.9; Wed, 21 Nov 2001 23:39:07 +0100 (CET)</example>
1418
1482
  <example host.name="foo.bar" service.version="8.10.2" sendmail.config.version="8.10.3">foo.bar ESMTP Sendmail 8.10.2/8.10.3; Mon, 10 Sep 2001 08:37:14 -0400</example>
1419
1483
  <example host.name="foo.bar" service.version="8.13.8" sendmail.config.version="8.13.9">foo.bar ESMTP foo-MTA Sendmail 8.13.8/8.13.9; Mon, 18 Apr 2011 08:52:38 -0700</example>
1484
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1420
1485
  <param pos="0" name="service.product" value="Sendmail"/>
1421
1486
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1422
1487
  <param pos="1" name="host.name"/>
1423
1488
  <param pos="2" name="service.version"/>
1489
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1424
1490
  <param pos="3" name="sendmail.config.version"/>
1425
1491
  <param pos="4" name="system.time"/>
1426
1492
  </fingerprint>
@@ -1428,10 +1494,12 @@
1428
1494
  <fingerprint pattern="^([^ ]+) +ESMTP .*Sendmail +([^/ ]+) */ *([^/ ]+); *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ \w+)\.?$">
1429
1495
  <description>Sendmail - with timezone and timestamp, w/o timezone offset or OS</description>
1430
1496
  <example host.name="foo.bar" service.version="8.14.4" sendmail.config.version="8.14.4" system.time="Thu, 5 Apr 2018 19:30:58 GMT">foo.bar ESMTP Sendmail 8.14.4/8.14.4; Thu, 5 Apr 2018 19:30:58 GMT</example>
1497
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1431
1498
  <param pos="0" name="service.product" value="Sendmail"/>
1432
1499
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss z"/>
1433
1500
  <param pos="1" name="host.name"/>
1434
1501
  <param pos="2" name="service.version"/>
1502
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1435
1503
  <param pos="3" name="sendmail.config.version"/>
1436
1504
  <param pos="4" name="system.time"/>
1437
1505
  </fingerprint>
@@ -1439,33 +1507,39 @@
1439
1507
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ ]+) ready at *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\))$">
1440
1508
  <description>Sendmail - with version and date (optional timezone), w/o config version</description>
1441
1509
  <example host.name="foo.bar" service.version="8.8.8" system.time="Tue, 6 Feb 2001 14:37:14 +0100">foo.bar ESMTP Sendmail 8.8.8 ready at Tue, 6 Feb 2001 14:37:14 +0100 (CET)</example>
1510
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1442
1511
  <param pos="0" name="service.family" value="Sendmail"/>
1443
1512
  <param pos="0" name="service.product" value="Sendmail"/>
1444
1513
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1445
1514
  <param pos="1" name="host.name"/>
1446
1515
  <param pos="2" name="service.version"/>
1516
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1447
1517
  <param pos="3" name="system.time"/>
1448
1518
  </fingerprint>
1449
1519
 
1450
1520
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ /]+) - \([^\)]+\)/[^ ]+;? *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\)) *$">
1451
1521
  <description>Sendmail - revision variant 1</description>
1452
1522
  <example>foo.foo.bar ESMTP Sendmail 8.11.1 - (Revision 1.010)/8.9.3; Sat, 22 Jan 2011 10:08:35 -0500 (EST)</example>
1523
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1453
1524
  <param pos="0" name="service.family" value="Sendmail"/>
1454
1525
  <param pos="0" name="service.product" value="Sendmail"/>
1455
1526
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1456
1527
  <param pos="1" name="host.name"/>
1457
1528
  <param pos="2" name="service.version"/>
1529
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1458
1530
  <param pos="3" name="system.time"/>
1459
1531
  </fingerprint>
1460
1532
 
1461
1533
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +(?:[^ ]+) +version +([^ ]+) +- +(?:[^;]+); *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\)) *$">
1462
1534
  <description>Sendmail - revision variant 2</description>
1463
1535
  <example>foo.foo.bar ESMTP Sendmail @(#)Sendmail version 8.13.3 - Revision 2.007 - 8 December 2008/8.8.6; Wed, 21 Jul 2010 11:17:01 -0400 (EDT)</example>
1536
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1464
1537
  <param pos="0" name="service.family" value="Sendmail"/>
1465
1538
  <param pos="0" name="service.product" value="Sendmail"/>
1466
1539
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1467
1540
  <param pos="1" name="host.name"/>
1468
1541
  <param pos="2" name="service.version"/>
1542
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1469
1543
  <param pos="3" name="system.time"/>
1470
1544
  </fingerprint>
1471
1545
 
@@ -1480,8 +1554,10 @@
1480
1554
  <example host.name="foo.bar">foo.bar ESMTP Sendmail ready. </example>
1481
1555
  <example host.name="foo.bar">foo.bar ESMTP Sendmail</example>
1482
1556
  <example host.name="foo.bar">foo.bar Sendmail ready. </example>
1557
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1483
1558
  <param pos="0" name="service.family" value="Sendmail"/>
1484
1559
  <param pos="0" name="service.product" value="Sendmail"/>
1560
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:-"/>
1485
1561
  <param pos="1" name="host.name"/>
1486
1562
  <param pos="2" name="system.time"/>
1487
1563
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
@@ -1490,10 +1566,12 @@
1490
1566
  <fingerprint pattern="^ESMTP Sendmail +([^/ ]+) */ *([^/ ]+); (\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)$">
1491
1567
  <description>Sendmail - with version and date, w/o hostname or platform (semicolon variant)</description>
1492
1568
  <example service.version="8.13.1" sendmail.config.version="8.13.1" system.time="Thu, 30 Nov 2017 01:58:22 -0700">ESMTP Sendmail 8.13.1/8.13.1; Thu, 30 Nov 2017 01:58:22 -0700</example>
1569
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1493
1570
  <param pos="0" name="service.family" value="Sendmail"/>
1494
1571
  <param pos="0" name="service.product" value="Sendmail"/>
1495
1572
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1496
1573
  <param pos="1" name="service.version"/>
1574
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1497
1575
  <param pos="2" name="sendmail.config.version"/>
1498
1576
  <param pos="3" name="system.time"/>
1499
1577
  </fingerprint>
@@ -1501,11 +1579,13 @@
1501
1579
  <fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ /]+) \([^\)]+\) *(.+) \(.+\)$">
1502
1580
  <description>Sendmail - unknown (date in version string variant)</description>
1503
1581
  <example>mail.foo.bar ESMTP Sendmail 8.11.1 (1.1.2.11/12Jul01-1016AM) Wed, 8 Jan 2003 11:21:22 +0100 (MET)</example>
1582
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1504
1583
  <param pos="0" name="service.family" value="Sendmail"/>
1505
1584
  <param pos="0" name="service.product" value="Sendmail"/>
1506
1585
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
1507
1586
  <param pos="1" name="host.name"/>
1508
1587
  <param pos="2" name="service.version"/>
1588
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1509
1589
  <param pos="3" name="system.time"/>
1510
1590
  </fingerprint>
1511
1591
 
@@ -1513,19 +1593,23 @@
1513
1593
 
1514
1594
  <fingerprint pattern="^([^ ]+) Sendmail ([^;]+); ([^;\.]+)$">
1515
1595
  <description>Sendmail - unknown platform, variant 1</description>
1596
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1516
1597
  <param pos="0" name="service.family" value="Sendmail"/>
1517
1598
  <param pos="0" name="service.product" value="Sendmail"/>
1518
1599
  <param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss zzz"/>
1519
1600
  <param pos="1" name="host.name"/>
1520
1601
  <param pos="2" name="service.version"/>
1602
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1521
1603
  <param pos="3" name="system.time"/>
1522
1604
  </fingerprint>
1523
1605
 
1524
1606
  <fingerprint pattern="^Sendmail ([^/]+)/([^/]+) ready on ([^ ]+)$">
1525
1607
  <description>Sendmail - basic with version and date</description>
1608
+ <param pos="0" name="service.vendor" value="Sendmail"/>
1526
1609
  <param pos="0" name="service.family" value="Sendmail"/>
1527
1610
  <param pos="0" name="service.product" value="Sendmail"/>
1528
1611
  <param pos="1" name="service.version"/>
1612
+ <param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
1529
1613
  <param pos="2" name="sendmail.config.version"/>
1530
1614
  <param pos="3" name="host.name"/>
1531
1615
  </fingerprint>
@@ -1751,11 +1835,12 @@
1751
1835
  <example host.name="foo.bar" service.version="5.3.1">foo.bar ESMTP CommuniGate Pro 5.3.1</example>
1752
1836
  <example host.name="foo.bar" service.version="6.2c3">foo.bar ESMTP CommuniGate Pro 6.2c3</example>
1753
1837
  <example host.name="foo.bar" service.version="4.3.12">foo.bar ESMTP CommuniGate Pro 4.3.12. It is you again :-(</example>
1754
- <param pos="0" name="service.vendor" value="Communigater"/>
1838
+ <param pos="0" name="service.vendor" value="Communigate"/>
1755
1839
  <param pos="0" name="service.family" value="Pro"/>
1756
- <param pos="0" name="service.product" value="ESMTP"/>
1840
+ <param pos="0" name="service.product" value="Communigate Pro"/>
1757
1841
  <param pos="1" name="host.name"/>
1758
1842
  <param pos="2" name="service.version"/>
1843
+ <param pos="0" name="service.cpe23" value="cpe:/a:communigate:communigate_pro:{service.version}"/>
1759
1844
  </fingerprint>
1760
1845
 
1761
1846
  <fingerprint pattern="^(\S+) NO UCE NO UBE NO RELAY PROBES ESMTP">