recog 2.3.11 → 2.3.16
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/SECURITY.md +35 -0
- data/.snyk +10 -0
- data/LICENSE +1 -1
- data/cpe-remap.yaml +18 -1
- data/identifiers/hw_family.txt +1 -1
- data/identifiers/hw_product.txt +1 -1
- data/identifiers/service_product.txt +1 -1
- data/lib/recog/version.rb +1 -1
- data/update_cpes.py +1 -1
- data/xml/dns_versionbind.xml +33 -19
- data/xml/favicons.xml +2 -0
- data/xml/ftp_banners.xml +71 -10
- data/xml/html_title.xml +30 -0
- data/xml/http_servers.xml +369 -60
- data/xml/imap_banners.xml +43 -0
- data/xml/pop_banners.xml +57 -2
- data/xml/smtp_banners.xml +87 -2
- data/xml/smtp_help.xml +2 -0
- data/xml/snmp_sysdescr.xml +94 -57
- data/xml/ssh_banners.xml +7 -3
- data/xml/telnet_banners.xml +147 -7
- data/xml/x509_issuers.xml +4 -2
- data/xml/x509_subjects.xml +2 -1
- metadata +4 -2
data/xml/imap_banners.xml
CHANGED
@@ -113,8 +113,49 @@
|
|
113
113
|
<description>Dovecot Secure IMAP Server</description>
|
114
114
|
<example>Dovecot ready.</example>
|
115
115
|
<example>Dovecot DA ready.</example>
|
116
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
116
117
|
<param pos="0" name="service.family" value="Dovecot"/>
|
117
118
|
<param pos="0" name="service.product" value="Dovecot"/>
|
119
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
120
|
+
</fingerprint>
|
121
|
+
|
122
|
+
<fingerprint pattern="^Dovecot \(Ubuntu\) ready\.$">
|
123
|
+
<description>Dovecot Secure IMAP Server - Ubuntu variant</description>
|
124
|
+
<example>Dovecot (Ubuntu) ready.</example>
|
125
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
126
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
127
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
128
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
129
|
+
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
130
|
+
<param pos="0" name="os.family" value="Linux"/>
|
131
|
+
<param pos="0" name="os.product" value="Linux"/>
|
132
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:canonical:ubuntu_linux:-"/>
|
133
|
+
</fingerprint>
|
134
|
+
|
135
|
+
<fingerprint pattern="^Dovecot \(Debian\) ready\.$">
|
136
|
+
<description>Dovecot Secure IMAP Server - Debian variant</description>
|
137
|
+
<example>Dovecot (Debian) ready.</example>
|
138
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
139
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
140
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
141
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
142
|
+
<param pos="0" name="os.vendor" value="Debian"/>
|
143
|
+
<param pos="0" name="os.family" value="Linux"/>
|
144
|
+
<param pos="0" name="os.product" value="Linux"/>
|
145
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:debian:debian_linux:-"/>
|
146
|
+
</fingerprint>
|
147
|
+
|
148
|
+
<fingerprint pattern="^Dovecot \(Raspbian\) ready\.$">
|
149
|
+
<description>Dovecot Secure IMAP Server - Raspbian variant</description>
|
150
|
+
<example>Dovecot (Raspbian) ready.</example>
|
151
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
152
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
153
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
154
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
155
|
+
<param pos="0" name="os.vendor" value="Raspbian"/>
|
156
|
+
<param pos="0" name="os.family" value="Linux"/>
|
157
|
+
<param pos="0" name="os.product" value="Linux"/>
|
158
|
+
<param pos="0" name="hw.product" value="Raspberry Pi"/>
|
118
159
|
</fingerprint>
|
119
160
|
|
120
161
|
<fingerprint pattern="^Courier-IMAP ready. Copyright \d+-\d+">
|
@@ -163,6 +204,7 @@
|
|
163
204
|
<param pos="0" name="service.family" value="Cyrus MTA"/>
|
164
205
|
<param pos="0" name="service.product" value="Cyrus IMAP"/>
|
165
206
|
<param pos="2" name="service.version"/>
|
207
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cmu:cyrus_imap_server:{service.version}"/>
|
166
208
|
<param pos="0" name="os.vendor" value="Apple"/>
|
167
209
|
<param pos="0" name="os.family" value="Mac OS X"/>
|
168
210
|
<param pos="0" name="os.product" value="Mac OS X"/>
|
@@ -179,6 +221,7 @@
|
|
179
221
|
<param pos="0" name="service.family" value="Cyrus MTA"/>
|
180
222
|
<param pos="0" name="service.product" value="Cyrus IMAP"/>
|
181
223
|
<param pos="2" name="service.version"/>
|
224
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:cmu:cyrus_imap_server:{service.version}"/>
|
182
225
|
<param pos="1" name="host.name"/>
|
183
226
|
</fingerprint>
|
184
227
|
|
data/xml/pop_banners.xml
CHANGED
@@ -180,11 +180,55 @@
|
|
180
180
|
|
181
181
|
<fingerprint pattern="^[dD]ovecot (?:DA )?ready\.(?: <.+@(.+)>)?$">
|
182
182
|
<description>Dovecot Secure POP Server</description>
|
183
|
+
<example>Dovecot ready.</example>
|
184
|
+
<example>Dovecot DA ready.</example>
|
185
|
+
<example host.name="foo.bar.baz">Dovecot ready. <fea.13865d.5f06b0a4.DuIvzQI4DAGR9MurahIGJw==@foo.bar.baz></example>
|
186
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
183
187
|
<param pos="0" name="service.family" value="Dovecot"/>
|
184
188
|
<param pos="0" name="service.product" value="Dovecot"/>
|
189
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
185
190
|
<param pos="1" name="host.name"/>
|
186
191
|
</fingerprint>
|
187
192
|
|
193
|
+
<fingerprint pattern="^Dovecot \(Ubuntu\) ready\.$">
|
194
|
+
<description>Dovecot Secure POP Server - Ubuntu variant</description>
|
195
|
+
<example>Dovecot (Ubuntu) ready.</example>
|
196
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
197
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
198
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
199
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
200
|
+
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
201
|
+
<param pos="0" name="os.family" value="Linux"/>
|
202
|
+
<param pos="0" name="os.product" value="Linux"/>
|
203
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:canonical:ubuntu_linux:-"/>
|
204
|
+
</fingerprint>
|
205
|
+
|
206
|
+
<fingerprint pattern="^Dovecot \(Debian\) ready\.$">
|
207
|
+
<description>Dovecot Secure POP Server - Debian variant</description>
|
208
|
+
<example>Dovecot (Debian) ready.</example>
|
209
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
210
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
211
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
212
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
213
|
+
<param pos="0" name="os.vendor" value="Debian"/>
|
214
|
+
<param pos="0" name="os.family" value="Linux"/>
|
215
|
+
<param pos="0" name="os.product" value="Linux"/>
|
216
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:debian:debian_linux:-"/>
|
217
|
+
</fingerprint>
|
218
|
+
|
219
|
+
<fingerprint pattern="^Dovecot \(Raspbian\) ready\.$">
|
220
|
+
<description>Dovecot Secure POP Server - Raspbian variant</description>
|
221
|
+
<example>Dovecot (Raspbian) ready.</example>
|
222
|
+
<param pos="0" name="service.vendor" value="Dovecot"/>
|
223
|
+
<param pos="0" name="service.family" value="Dovecot"/>
|
224
|
+
<param pos="0" name="service.product" value="Dovecot"/>
|
225
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:dovecot:dovecot:-"/>
|
226
|
+
<param pos="0" name="os.vendor" value="Raspbian"/>
|
227
|
+
<param pos="0" name="os.family" value="Linux"/>
|
228
|
+
<param pos="0" name="os.product" value="Linux"/>
|
229
|
+
<param pos="0" name="hw.product" value="Raspberry Pi"/>
|
230
|
+
</fingerprint>
|
231
|
+
|
188
232
|
<fingerprint pattern="^(\S+) Zimbra POP3 server ready\.?$">
|
189
233
|
<description>VMware Zimbra POP</description>
|
190
234
|
<example host.name="foo.bar">foo.bar Zimbra POP3 server ready</example>
|
@@ -301,6 +345,19 @@
|
|
301
345
|
<param pos="1" name="service.version"/>
|
302
346
|
</fingerprint>
|
303
347
|
|
348
|
+
<fingerprint pattern="^Welcome to MailEnable POP3 Server$">
|
349
|
+
<description>MailEnable POP3</description>
|
350
|
+
<example>Welcome to MailEnable POP3 Server</example>
|
351
|
+
<param pos="0" name="os.vendor" value="Microsoft"/>
|
352
|
+
<param pos="0" name="os.family" value="Windows"/>
|
353
|
+
<param pos="0" name="os.product" value="Windows"/>
|
354
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:microsoft:windows:-"/>
|
355
|
+
<param pos="0" name="service.vendor" value="MailEnable"/>
|
356
|
+
<param pos="0" name="service.family" value="Mail Server"/>
|
357
|
+
<param pos="0" name="service.product" value="MailEnable"/>
|
358
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:mailenable:mailenable:-"/>
|
359
|
+
</fingerprint>
|
360
|
+
|
304
361
|
<!--
|
305
362
|
; Mandrake 8.1 - uses UW IMAP
|
306
363
|
; +OK POP3 mandrake81-f540k v2000.70mdk server ready
|
@@ -330,7 +387,6 @@
|
|
330
387
|
// +OK Gordano Messaging Suite POP3 server ready <13501095613509@hollandcanadaline.com>
|
331
388
|
// +OK unitechna.lt Merak 8.9.1 POP3 Sun, 22 Jul 2007 23:16:25 +0300 <20070722231625@unitechna.lt>
|
332
389
|
// +OK Cubic Circle's v1.31 1998/05/13 POP3 ready <0c9300004104a246@www.dvdld.co.za>
|
333
|
-
// +OK Welcome to MailEnable POP3 Server
|
334
390
|
// +OK GroupWise POP3 server ready
|
335
391
|
// +OK POP3 AnalogX Proxy 4.14 (Release) ready.
|
336
392
|
// +OK lojack.com.ar POP MDaemon 9.6.0 ready <MDAEMON-F200707232110.AA1001241MD4604@lojack.com.ar>
|
@@ -471,7 +527,6 @@
|
|
471
527
|
+OK studiovisuals.com POP3 Server (Version 1.020h) ready.
|
472
528
|
+OK themeekermall.com POP3 Server (Version 1.020h) ready.
|
473
529
|
+OK unitechna.lt Merak 8.9.1 POP3 Sun, 22 Jul 2007 23:16:25 +0300 <20070722231625@unitechna.lt>
|
474
|
-
+OK Welcome to MailEnable POP3 Server
|
475
530
|
+OK X1 NT-POP3 Server 2436681011.monstercommercesites.com (IMail 7.15 560907-1)
|
476
531
|
+OK X1 NT-POP3 Server Calvin-Serv (IMail 8.22 1107-1)
|
477
532
|
+OK X1 NT-POP3 Server chealsea.com.cn (IMail 8.15 16990-1)
|
data/xml/smtp_banners.xml
CHANGED
@@ -77,6 +77,7 @@
|
|
77
77
|
<param pos="0" name="service.family" value="Mail Server"/>
|
78
78
|
<param pos="0" name="service.product" value="Mail Server"/>
|
79
79
|
<param pos="1" name="service.version"/>
|
80
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
|
80
81
|
</fingerprint>
|
81
82
|
|
82
83
|
<fingerprint pattern="^^(?:(\S+) +)?ArGoSoft Mail Server Freeware, Version [^ ]+ \(([^ ]+\.[^ ]+\.[^ ]+\.[^ ]+)\) *$">
|
@@ -91,6 +92,7 @@
|
|
91
92
|
<param pos="0" name="service.family" value="Mail Server"/>
|
92
93
|
<param pos="0" name="service.product" value="Mail Server"/>
|
93
94
|
<param pos="2" name="service.version"/>
|
95
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
|
94
96
|
<param pos="1" name="host.name"/>
|
95
97
|
</fingerprint>
|
96
98
|
|
@@ -108,6 +110,7 @@
|
|
108
110
|
<param pos="0" name="service.product" value="Mail Server"/>
|
109
111
|
<param pos="1" name="host.name"/>
|
110
112
|
<param pos="2" name="service.version"/>
|
113
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:argosoft:mail_server:{service.version}"/>
|
111
114
|
</fingerprint>
|
112
115
|
|
113
116
|
<fingerprint pattern="^([^ ]+) +AppleShare IP Mail Server ([^ ]+\.[\d.]+) SMTP Server Ready *$">
|
@@ -861,6 +864,7 @@
|
|
861
864
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
862
865
|
<param pos="1" name="host.name"/>
|
863
866
|
<param pos="2" name="service.version"/>
|
867
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:ibm:lotus_domino:{service.version}"/>
|
864
868
|
<param pos="3" name="system.time"/>
|
865
869
|
</fingerprint>
|
866
870
|
|
@@ -940,11 +944,13 @@
|
|
940
944
|
|
941
945
|
<fingerprint pattern="^([^ ]+) Postfix \(Postfix-([^ ]+)-([^ ]+)\) \(([^ ]+)\) *$">
|
942
946
|
<description>Postfix - version + build, followed by os</description>
|
947
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
943
948
|
<param pos="0" name="service.family" value="Postfix"/>
|
944
949
|
<param pos="0" name="service.product" value="Postfix"/>
|
945
950
|
<param pos="1" name="host.name"/>
|
946
951
|
<param pos="2" name="service.version"/>
|
947
952
|
<param pos="3" name="service.version.version"/>
|
953
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
|
948
954
|
<param pos="4" name="postfix.os.info"/>
|
949
955
|
</fingerprint>
|
950
956
|
|
@@ -952,27 +958,33 @@
|
|
952
958
|
<description>Postfix - Std semantic versioning, w/ optional parens</description>
|
953
959
|
<example service.version="3.1.4">foo.bar ESMTP Postfix (3.1.4)</example>
|
954
960
|
<example service.version="2.7.1">foo.bar ESMTP Postfix 2.7.1</example>
|
961
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
955
962
|
<param pos="0" name="service.family" value="Postfix"/>
|
956
963
|
<param pos="0" name="service.product" value="Postfix"/>
|
957
964
|
<param pos="1" name="host.name"/>
|
958
965
|
<param pos="2" name="service.version"/>
|
966
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
|
959
967
|
</fingerprint>
|
960
968
|
|
961
969
|
<fingerprint pattern="^([^ ]+) ESMTP Postfix \((?:Postfix-)?([\d.]+)-([^ ]+)\)$">
|
962
970
|
<description>Postfix - version + build</description>
|
963
971
|
<example service.version="2.8" service.version.version="20100306">foo.bar ESMTP Postfix (2.8-20100306)</example>
|
972
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
964
973
|
<param pos="0" name="service.family" value="Postfix"/>
|
965
974
|
<param pos="0" name="service.product" value="Postfix"/>
|
966
975
|
<param pos="1" name="host.name"/>
|
967
976
|
<param pos="2" name="service.version"/>
|
968
977
|
<param pos="3" name="service.version.version"/>
|
978
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:{service.version}"/>
|
969
979
|
</fingerprint>
|
970
980
|
|
971
981
|
<fingerprint pattern="^([^ ]+) +E?SMTP Postfix \(Ubuntu\)$">
|
972
982
|
<description>Postfix - Ubuntu</description>
|
973
983
|
<example>foo.bar ESMTP Postfix (Ubuntu)</example>
|
984
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
974
985
|
<param pos="0" name="service.family" value="Postfix"/>
|
975
986
|
<param pos="0" name="service.product" value="Postfix"/>
|
987
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
976
988
|
<param pos="1" name="host.name"/>
|
977
989
|
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
978
990
|
<param pos="0" name="os.family" value="Linux"/>
|
@@ -984,8 +996,10 @@
|
|
984
996
|
<description>Postfix - Ubuntu, Mail-in-a-Box package</description>
|
985
997
|
<example>foo.bar ESMTP Hi, I'm a Mail-in-a-Box (Ubuntu/Postfix; see https://mailinabox.email/)</example>
|
986
998
|
<example>foo.bar Hi, I'm a Mail-in-a-Box (Ubuntu/Postfix; see https://mailinabox.email/)</example>
|
999
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
987
1000
|
<param pos="0" name="service.family" value="Postfix"/>
|
988
1001
|
<param pos="0" name="service.product" value="Postfix"/>
|
1002
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
989
1003
|
<param pos="1" name="host.name"/>
|
990
1004
|
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
991
1005
|
<param pos="0" name="os.family" value="Linux"/>
|
@@ -996,8 +1010,10 @@
|
|
996
1010
|
<fingerprint pattern="^([^ ]+) +E?SMTP Postfix \(Debian/GNU\)$">
|
997
1011
|
<description>Postfix - Debian</description>
|
998
1012
|
<example>foo.bar ESMTP Postfix (Debian/GNU)</example>
|
1013
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
999
1014
|
<param pos="0" name="service.family" value="Postfix"/>
|
1000
1015
|
<param pos="0" name="service.product" value="Postfix"/>
|
1016
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
1001
1017
|
<param pos="1" name="host.name"/>
|
1002
1018
|
<param pos="0" name="os.vendor" value="Debian"/>
|
1003
1019
|
<param pos="0" name="os.family" value="Linux"/>
|
@@ -1008,8 +1024,10 @@
|
|
1008
1024
|
<fingerprint pattern="^([^ ]+) ESMTP.* Postfix *\(.+\) *$">
|
1009
1025
|
<description>Postfix - generic banner with amusing comments in parentheses</description>
|
1010
1026
|
<example>foo.bar ESMTP Postfix (lol)</example>
|
1027
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
1011
1028
|
<param pos="0" name="service.family" value="Postfix"/>
|
1012
1029
|
<param pos="0" name="service.product" value="Postfix"/>
|
1030
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
1013
1031
|
<param pos="1" name="host.name"/>
|
1014
1032
|
</fingerprint>
|
1015
1033
|
|
@@ -1017,23 +1035,29 @@
|
|
1017
1035
|
<description>Postfix - generic banner</description>
|
1018
1036
|
<example>foo.bar ESMTP Postfix</example>
|
1019
1037
|
<example>foo.bar SMTP Postfix</example>
|
1038
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
1020
1039
|
<param pos="0" name="service.family" value="Postfix"/>
|
1021
1040
|
<param pos="0" name="service.product" value="Postfix"/>
|
1041
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
1022
1042
|
<param pos="1" name="host.name"/>
|
1023
1043
|
</fingerprint>
|
1024
1044
|
|
1025
1045
|
<fingerprint pattern="^ *ESMTP Postfix$">
|
1026
1046
|
<description>Postfix - banner without hostname or version</description>
|
1027
1047
|
<example>ESMTP Postfix</example>
|
1048
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
1028
1049
|
<param pos="0" name="service.family" value="Postfix"/>
|
1029
1050
|
<param pos="0" name="service.product" value="Postfix"/>
|
1051
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
1030
1052
|
</fingerprint>
|
1031
1053
|
|
1032
1054
|
<fingerprint pattern="^(?i)([^ ]+) POSTFIX$">
|
1033
1055
|
<description>Postfix - generic w/o ESMTP</description>
|
1034
1056
|
<example host.name="foo.bar">foo.bar Postfix</example>
|
1057
|
+
<param pos="0" name="service.vendor" value="Postfix"/>
|
1035
1058
|
<param pos="0" name="service.family" value="Postfix"/>
|
1036
1059
|
<param pos="0" name="service.product" value="Postfix"/>
|
1060
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:postfix:postfix:-"/>
|
1037
1061
|
<param pos="1" name="host.name"/>
|
1038
1062
|
</fingerprint>
|
1039
1063
|
|
@@ -1070,13 +1094,16 @@
|
|
1070
1094
|
<fingerprint pattern="^Sendmail ESMTP ready$">
|
1071
1095
|
<description>Sendmail - short banner w/o hostname, version, platform, or date.</description>
|
1072
1096
|
<example>Sendmail ESMTP ready</example>
|
1097
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1073
1098
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1074
1099
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1100
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:-"/>
|
1075
1101
|
</fingerprint>
|
1076
1102
|
|
1077
1103
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +([^ ]+) \(PHNE_([^ ]+)\) */ *(.+); *(.+) \(.+\)$">
|
1078
1104
|
<description>Sendmail - HP-UX with a PHNE (HP Networking patch) installed</description>
|
1079
1105
|
<example host.name="foo.bar" service.version="8.8.6" sendmail.config.version="8.7.1">foo.bar ESMTP Sendmail 8.8.6 (PHNE_14041)/8.7.1; Tue, 6 Feb 2001 10:04:32 -0300 (SAT)</example>
|
1106
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1080
1107
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1081
1108
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1082
1109
|
<param pos="0" name="os.vendor" value="HP"/>
|
@@ -1086,6 +1113,7 @@
|
|
1086
1113
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1087
1114
|
<param pos="1" name="host.name"/>
|
1088
1115
|
<param pos="2" name="service.version"/>
|
1116
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1089
1117
|
<param pos="3" name="sendmail.hpux.phne.version"/>
|
1090
1118
|
<param pos="4" name="sendmail.config.version"/>
|
1091
1119
|
<param pos="5" name="system.time"/>
|
@@ -1094,6 +1122,7 @@
|
|
1094
1122
|
<fingerprint pattern="^(\S+) ESMTP Sendmail \S+ version ([\d\.]+) - Revision \S+ HP-UX([\d\.]+).*(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ \w\w\w)$">
|
1095
1123
|
<description>Sendmail - HP-UX</description>
|
1096
1124
|
<example host.name="foo.bar" os.version="11.31" service.version="8.13.3">foo.bar ESMTP Sendmail @(#)Sendmail version 8.13.3 - Revision 1.004:: HP-UX11.31 - 03rd February,2010/8.11.1; Wed, 20 May 2015 23:35:38 GMT</example>
|
1125
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1097
1126
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1098
1127
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1099
1128
|
<param pos="0" name="os.vendor" value="HP"/>
|
@@ -1104,12 +1133,14 @@
|
|
1104
1133
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss z"/>
|
1105
1134
|
<param pos="1" name="host.name"/>
|
1106
1135
|
<param pos="2" name="service.version"/>
|
1136
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1107
1137
|
<param pos="4" name="system.time"/>
|
1108
1138
|
</fingerprint>
|
1109
1139
|
|
1110
1140
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +([^ ]+)/UW([^ ]+) ready at *(.+) \(.+\) *$">
|
1111
1141
|
<description>Sendmail - Unixware</description>
|
1112
1142
|
<example service.version="8.8.7">foo.bar ESMTP Sendmail 8.8.7/UW7.1.0 ready at Tue, 6 Feb 2001 16:39:30 -0300 (GMT-0300)</example>
|
1143
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1113
1144
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1114
1145
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1115
1146
|
<param pos="0" name="os.vendor" value="SCO"/>
|
@@ -1118,6 +1149,7 @@
|
|
1118
1149
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1119
1150
|
<param pos="1" name="host.name"/>
|
1120
1151
|
<param pos="2" name="service.version"/>
|
1152
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1121
1153
|
<param pos="3" name="os.version"/>
|
1122
1154
|
<param pos="4" name="system.time"/>
|
1123
1155
|
</fingerprint>
|
@@ -1125,6 +1157,7 @@
|
|
1125
1157
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail AIX([^/]+)/UCB ([^;]+); (.+) \(.+\)$">
|
1126
1158
|
<description>Sendmail - AIX (UCB variant)</description>
|
1127
1159
|
<example os.version="4.2" service.version="8.7">foo.bar ESMTP Sendmail AIX4.2/UCB 8.7; Sun, 29 Jul 2001 22:34:37 -0400 (EDT)</example>
|
1160
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1128
1161
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1129
1162
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1130
1163
|
<param pos="0" name="os.vendor" value="IBM"/>
|
@@ -1135,12 +1168,14 @@
|
|
1135
1168
|
<param pos="2" name="os.version"/>
|
1136
1169
|
<param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
|
1137
1170
|
<param pos="3" name="service.version"/>
|
1171
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1138
1172
|
<param pos="4" name="system.time"/>
|
1139
1173
|
</fingerprint>
|
1140
1174
|
|
1141
1175
|
<fingerprint pattern="^([^ ]+) Sendmail AIX([^/]+)/UCB ([^/]+)/([^ ]+) ready at (.+)$">
|
1142
1176
|
<description>Sendmail - AIX (UCB/ready at variant)</description>
|
1143
1177
|
<example>foo.bar Sendmail AIX 4.1/UCB 5.64/4.03 ready at Mon, 30 Jul 2001 00:42:21 -0500</example>
|
1178
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1144
1179
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1145
1180
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1146
1181
|
<param pos="0" name="os.vendor" value="IBM"/>
|
@@ -1151,6 +1186,7 @@
|
|
1151
1186
|
<param pos="2" name="os.version"/>
|
1152
1187
|
<param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
|
1153
1188
|
<param pos="3" name="service.version"/>
|
1189
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1154
1190
|
<param pos="4" name="sendmail.config.version"/>
|
1155
1191
|
<param pos="5" name="system.time"/>
|
1156
1192
|
</fingerprint>
|
@@ -1159,6 +1195,7 @@
|
|
1159
1195
|
<description>Sendmail - AIX</description>
|
1160
1196
|
<example host.name="foo.bar" os.version="4.2" service.version="8.7" sendmail.config.version="8.8">foo.bar ESMTP Sendmail AIX4.2/8.7/8.8; Sun, 29 Jul 2001 22:34:37 -0400 (EDT)</example>
|
1161
1197
|
<example host.name="foo.bar" os.version="5.1" service.version="8.11.6p2" sendmail.config.version="8.11.0">foo.bar ESMTP Sendmail AIX5.1/8.11.6p2/8.11.0; Fri, 28 Aug 1970 19:42:05 -0800</example>
|
1198
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1162
1199
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1163
1200
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1164
1201
|
<param pos="0" name="os.vendor" value="IBM"/>
|
@@ -1169,6 +1206,7 @@
|
|
1169
1206
|
<param pos="2" name="os.version"/>
|
1170
1207
|
<param pos="0" name="os.cpe23" value="cpe:/o:ibm:aix:{os.version}"/>
|
1171
1208
|
<param pos="3" name="service.version"/>
|
1209
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1172
1210
|
<param pos="4" name="sendmail.config.version"/>
|
1173
1211
|
<param pos="5" name="system.time"/>
|
1174
1212
|
</fingerprint>
|
@@ -1176,6 +1214,7 @@
|
|
1176
1214
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/SuSE Linux ([^;]+); (.+)$">
|
1177
1215
|
<description>Sendmail - SuSE Linux</description>
|
1178
1216
|
<example>foo.bar ESMTP Sendmail 8.9.3/8.9.3/SuSE Linux 8.9.3-0.1; Mon, 30 Jul 2001 04:48:54 +0200</example>
|
1217
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1179
1218
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1180
1219
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1181
1220
|
<param pos="0" name="os.vendor" value="SuSE"/>
|
@@ -1185,6 +1224,7 @@
|
|
1185
1224
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1186
1225
|
<param pos="1" name="host.name"/>
|
1187
1226
|
<param pos="2" name="service.version"/>
|
1227
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1188
1228
|
<param pos="3" name="sendmail.config.version"/>
|
1189
1229
|
<param pos="4" name="sendmail.vendor.version"/>
|
1190
1230
|
<param pos="5" name="system.time"/>
|
@@ -1193,6 +1233,7 @@
|
|
1193
1233
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)\+Sun/([^ ]+); (.+)$">
|
1194
1234
|
<description>Sendmail - Solaris with date (no time offeset variant)</description>
|
1195
1235
|
<example>foo.bar ESMTP Sendmail 8.9.3+Sun/8.9.1; Mon, 30 Jul 2001 02:50:22 GMT</example>
|
1236
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1196
1237
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1197
1238
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1198
1239
|
<param pos="0" name="os.vendor" value="Sun"/>
|
@@ -1202,6 +1243,7 @@
|
|
1202
1243
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss zzz"/>
|
1203
1244
|
<param pos="1" name="host.name"/>
|
1204
1245
|
<param pos="2" name="service.version"/>
|
1246
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1205
1247
|
<param pos="3" name="sendmail.config.version"/>
|
1206
1248
|
<param pos="4" name="system.time"/>
|
1207
1249
|
</fingerprint>
|
@@ -1209,6 +1251,7 @@
|
|
1209
1251
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)\+Sun/([^ ]+) ready at (.+) \(.+\)$">
|
1210
1252
|
<description>Sendmail - Solaris with date (ready variant)</description>
|
1211
1253
|
<example>foo.bar ESMTP Sendmail 8.8.8+Sun/8.6.4 ready at Thu, 15 Nov 2000 11:40:32 -0800 (PST)</example>
|
1254
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1212
1255
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1213
1256
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1214
1257
|
<param pos="0" name="os.vendor" value="Sun"/>
|
@@ -1218,6 +1261,7 @@
|
|
1218
1261
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1219
1262
|
<param pos="1" name="host.name"/>
|
1220
1263
|
<param pos="2" name="service.version"/>
|
1264
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1221
1265
|
<param pos="3" name="sendmail.config.version"/>
|
1222
1266
|
<param pos="4" name="system.time"/>
|
1223
1267
|
</fingerprint>
|
@@ -1226,6 +1270,7 @@
|
|
1226
1270
|
<description>Sendmail - Debian</description>
|
1227
1271
|
<example service.version="8.12.0.Beta7" sendmail.config.version="8.12.0.Beta7" sendmail.vendor.version="8.12.0.Beta7-1">foo.bar ESMTP Debian Sendmail 8.12.0.Beta7/8.12.0.Beta7/Debian 8.12.0.Beta7-1; Sun, 29 Jul 2001 18:52:20 -0800</example>
|
1228
1272
|
<example service.version="8.11.0" sendmail.config.version="8.9.3" sendmail.vendor.version="8.9.3-21">foo.bar ESMTP Sendmail 8.11.0/8.9.3/Debian 8.9.3-21; Sun, 29 Jul 2001 19:51:00 -0700</example>
|
1273
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1229
1274
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1230
1275
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1231
1276
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1235,6 +1280,7 @@
|
|
1235
1280
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1236
1281
|
<param pos="1" name="host.name"/>
|
1237
1282
|
<param pos="2" name="service.version"/>
|
1283
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1238
1284
|
<param pos="3" name="sendmail.config.version"/>
|
1239
1285
|
<param pos="4" name="sendmail.vendor.version"/>
|
1240
1286
|
<param pos="5" name="system.time"/>
|
@@ -1244,6 +1290,7 @@
|
|
1244
1290
|
<description>Sendmail - Debian 7.x (wheezy)</description>
|
1245
1291
|
<example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4+wheezy1; Thu, 30 Nov 2017 10:33:05 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1246
1292
|
<example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4+deb7u1; Thu, 30 Nov 2017 11:00:33 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1293
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1247
1294
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1248
1295
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1249
1296
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1254,6 +1301,7 @@
|
|
1254
1301
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1255
1302
|
<param pos="1" name="host.name"/>
|
1256
1303
|
<param pos="2" name="service.version"/>
|
1304
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1257
1305
|
<param pos="3" name="sendmail.config.version"/>
|
1258
1306
|
<param pos="4" name="system.time"/>
|
1259
1307
|
</fingerprint>
|
@@ -1261,6 +1309,7 @@
|
|
1261
1309
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+deb8u\d; (.+); .*$">
|
1262
1310
|
<description>Sendmail - Debian 8.x (jessie)</description>
|
1263
1311
|
<example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-8+deb8u2; Thu, 30 Nov 2017 10:25:48 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1312
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1264
1313
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1265
1314
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1266
1315
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1271,6 +1320,7 @@
|
|
1271
1320
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1272
1321
|
<param pos="1" name="host.name"/>
|
1273
1322
|
<param pos="2" name="service.version"/>
|
1323
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1274
1324
|
<param pos="3" name="sendmail.config.version"/>
|
1275
1325
|
<param pos="4" name="system.time"/>
|
1276
1326
|
</fingerprint>
|
@@ -1278,6 +1328,7 @@
|
|
1278
1328
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+lenny\d; (.+); .*$">
|
1279
1329
|
<description>Sendmail - Debian 5.x (lenny)</description>
|
1280
1330
|
<example service.version="8.14.3">foo.bar ESMTP Sendmail 8.14.3/8.14.3/Debian-5+lenny1; Thu, 30 Nov 2017 12:29:40 +0300; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1331
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1281
1332
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1282
1333
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1283
1334
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1288,6 +1339,7 @@
|
|
1288
1339
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1289
1340
|
<param pos="1" name="host.name"/>
|
1290
1341
|
<param pos="2" name="service.version"/>
|
1342
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1291
1343
|
<param pos="3" name="sendmail.config.version"/>
|
1292
1344
|
<param pos="4" name="system.time"/>
|
1293
1345
|
</fingerprint>
|
@@ -1295,6 +1347,7 @@
|
|
1295
1347
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\d\+etch\d; (.+); .*$">
|
1296
1348
|
<description>Sendmail - Debian 4.x (etch)</description>
|
1297
1349
|
<example service.version="8.13.8" sendmail.config.version="8.13.8">foo.bar ESMTP Sendmail 8.13.8/8.13.8/Debian-3+etch1; Thu, 30 Nov 2017 10:28:23 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1350
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1298
1351
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1299
1352
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1300
1353
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1305,6 +1358,7 @@
|
|
1305
1358
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1306
1359
|
<param pos="1" name="host.name"/>
|
1307
1360
|
<param pos="2" name="service.version"/>
|
1361
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1308
1362
|
<param pos="3" name="sendmail.config.version"/>
|
1309
1363
|
<param pos="4" name="system.time"/>
|
1310
1364
|
</fingerprint>
|
@@ -1312,6 +1366,7 @@
|
|
1312
1366
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^/]+)/([^/]+)/Debian-\dsarge\d; (.+); .*$">
|
1313
1367
|
<description>Sendmail - Debian 3.1 (sarge)</description>
|
1314
1368
|
<example service.version="8.13.4">foo.bar ESMTP Sendmail 8.13.4/8.13.4/Debian-3sarge1; Thu, 30 Nov 2017 10:55:47 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1369
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1315
1370
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1316
1371
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1317
1372
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1322,6 +1377,7 @@
|
|
1322
1377
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1323
1378
|
<param pos="1" name="host.name"/>
|
1324
1379
|
<param pos="2" name="service.version"/>
|
1380
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1325
1381
|
<param pos="3" name="sendmail.config.version"/>
|
1326
1382
|
<param pos="4" name="system.time"/>
|
1327
1383
|
</fingerprint>
|
@@ -1331,6 +1387,7 @@
|
|
1331
1387
|
<example service.version="8.15.2">foo.bar ESMTP Sendmail 8.15.2/8.15.2/Debian-3; Thu, 30 Nov 2017 10:55:50 +0200; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1332
1388
|
<example service.version="8.14.3">foo.bar ESMTP Sendmail 8.14.3/8.14.3/Debian-9.4; Thu, 30 Nov 2017 10:11:54 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1333
1389
|
<example service.version="8.14.2">foo.bar ESMTP Sendmail 8.14.2/8.14.2/Debian-2build1; Thu, 30 Nov 2017 04:09:50 -0600; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1390
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1334
1391
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1335
1392
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1336
1393
|
<param pos="0" name="os.vendor" value="Debian"/>
|
@@ -1340,6 +1397,7 @@
|
|
1340
1397
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1341
1398
|
<param pos="1" name="host.name"/>
|
1342
1399
|
<param pos="2" name="service.version"/>
|
1400
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1343
1401
|
<param pos="3" name="sendmail.config.version"/>
|
1344
1402
|
<param pos="4" name="system.time"/>
|
1345
1403
|
</fingerprint>
|
@@ -1348,6 +1406,7 @@
|
|
1348
1406
|
<description>Sendmail - Ubuntu</description>
|
1349
1407
|
<example service.version="8.13.5.20060308">foo.bar ESMTP Sendmail 8.13.5.20060308/8.13.5/Debian-3ubuntu1.1; Fri, 24 Jul 2009 01:41:21 -0700; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1350
1408
|
<example service.version="8.14.4">foo.bar ESMTP Sendmail 8.14.4/8.14.4/Debian-4.1ubuntu1; Thu, 30 Nov 2017 11:00:30 +0100; (No UCE/UBE) logging access from: xyz.foo.bar(OK)-xyz.foo.bar [10.0.0.1]</example>
|
1409
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1351
1410
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1352
1411
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1353
1412
|
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
@@ -1357,12 +1416,14 @@
|
|
1357
1416
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1358
1417
|
<param pos="1" name="host.name"/>
|
1359
1418
|
<param pos="2" name="service.version"/>
|
1419
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1360
1420
|
<param pos="3" name="system.time"/>
|
1361
1421
|
</fingerprint>
|
1362
1422
|
|
1363
1423
|
<fingerprint pattern="^([^ ]+) (?:E?SMTP )?Sendmail SMI-([^/]+)/(SMI-SVR4) ready at (.+)$">
|
1364
1424
|
<description>Sendmail - Solaris (SMI variant)</description>
|
1365
1425
|
<example>foo.bar Sendmail SMI-8.6/SMI-SVR4 ready at Sun, 29 Jul 2001 22:58:46 -0400</example>
|
1426
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1366
1427
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1367
1428
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1368
1429
|
<param pos="0" name="os.vendor" value="Sun"/>
|
@@ -1372,6 +1433,7 @@
|
|
1372
1433
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1373
1434
|
<param pos="1" name="host.name"/>
|
1374
1435
|
<param pos="2" name="service.version"/>
|
1436
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1375
1437
|
<param pos="3" name="sendmail.config.version"/>
|
1376
1438
|
<param pos="4" name="system.time"/>
|
1377
1439
|
</fingerprint>
|
@@ -1379,6 +1441,7 @@
|
|
1379
1441
|
<fingerprint pattern="^([^ ]+) ESMTP Sendmail ([^ ]+)/(linuxconf); (.+)$">
|
1380
1442
|
<description>Sendmail - unknown platform (linuxconf variant)</description>
|
1381
1443
|
<example>foo.bar ESMTP Sendmail 8.9.3/linuxconf; Sun, 29 Jul 2001 22:48:28 -0400</example>
|
1444
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1382
1445
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1383
1446
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1384
1447
|
<param pos="0" name="os.family" value="Linux"/>
|
@@ -1386,6 +1449,7 @@
|
|
1386
1449
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1387
1450
|
<param pos="1" name="host.name"/>
|
1388
1451
|
<param pos="2" name="service.version"/>
|
1452
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1389
1453
|
<param pos="3" name="sendmail.config.version"/>
|
1390
1454
|
<param pos="4" name="system.time"/>
|
1391
1455
|
</fingerprint>
|
@@ -1417,10 +1481,12 @@
|
|
1417
1481
|
<example host.name="foo.bar" service.version="8.8.8" sendmail.config.version="8.8.9">foo.bar ESMTP blah Sendmail 8.8.8/8.8.9; Wed, 21 Nov 2001 23:39:07 +0100 (CET)</example>
|
1418
1482
|
<example host.name="foo.bar" service.version="8.10.2" sendmail.config.version="8.10.3">foo.bar ESMTP Sendmail 8.10.2/8.10.3; Mon, 10 Sep 2001 08:37:14 -0400</example>
|
1419
1483
|
<example host.name="foo.bar" service.version="8.13.8" sendmail.config.version="8.13.9">foo.bar ESMTP foo-MTA Sendmail 8.13.8/8.13.9; Mon, 18 Apr 2011 08:52:38 -0700</example>
|
1484
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1420
1485
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1421
1486
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1422
1487
|
<param pos="1" name="host.name"/>
|
1423
1488
|
<param pos="2" name="service.version"/>
|
1489
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1424
1490
|
<param pos="3" name="sendmail.config.version"/>
|
1425
1491
|
<param pos="4" name="system.time"/>
|
1426
1492
|
</fingerprint>
|
@@ -1428,10 +1494,12 @@
|
|
1428
1494
|
<fingerprint pattern="^([^ ]+) +ESMTP .*Sendmail +([^/ ]+) */ *([^/ ]+); *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ \w+)\.?$">
|
1429
1495
|
<description>Sendmail - with timezone and timestamp, w/o timezone offset or OS</description>
|
1430
1496
|
<example host.name="foo.bar" service.version="8.14.4" sendmail.config.version="8.14.4" system.time="Thu, 5 Apr 2018 19:30:58 GMT">foo.bar ESMTP Sendmail 8.14.4/8.14.4; Thu, 5 Apr 2018 19:30:58 GMT</example>
|
1497
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1431
1498
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1432
1499
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss z"/>
|
1433
1500
|
<param pos="1" name="host.name"/>
|
1434
1501
|
<param pos="2" name="service.version"/>
|
1502
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1435
1503
|
<param pos="3" name="sendmail.config.version"/>
|
1436
1504
|
<param pos="4" name="system.time"/>
|
1437
1505
|
</fingerprint>
|
@@ -1439,33 +1507,39 @@
|
|
1439
1507
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ ]+) ready at *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\))$">
|
1440
1508
|
<description>Sendmail - with version and date (optional timezone), w/o config version</description>
|
1441
1509
|
<example host.name="foo.bar" service.version="8.8.8" system.time="Tue, 6 Feb 2001 14:37:14 +0100">foo.bar ESMTP Sendmail 8.8.8 ready at Tue, 6 Feb 2001 14:37:14 +0100 (CET)</example>
|
1510
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1442
1511
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1443
1512
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1444
1513
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1445
1514
|
<param pos="1" name="host.name"/>
|
1446
1515
|
<param pos="2" name="service.version"/>
|
1516
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1447
1517
|
<param pos="3" name="system.time"/>
|
1448
1518
|
</fingerprint>
|
1449
1519
|
|
1450
1520
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ /]+) - \([^\)]+\)/[^ ]+;? *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\)) *$">
|
1451
1521
|
<description>Sendmail - revision variant 1</description>
|
1452
1522
|
<example>foo.foo.bar ESMTP Sendmail 8.11.1 - (Revision 1.010)/8.9.3; Sat, 22 Jan 2011 10:08:35 -0500 (EST)</example>
|
1523
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1453
1524
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1454
1525
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1455
1526
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1456
1527
|
<param pos="1" name="host.name"/>
|
1457
1528
|
<param pos="2" name="service.version"/>
|
1529
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1458
1530
|
<param pos="3" name="system.time"/>
|
1459
1531
|
</fingerprint>
|
1460
1532
|
|
1461
1533
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail +(?:[^ ]+) +version +([^ ]+) +- +(?:[^;]+); *(\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)(?: \(.+\)) *$">
|
1462
1534
|
<description>Sendmail - revision variant 2</description>
|
1463
1535
|
<example>foo.foo.bar ESMTP Sendmail @(#)Sendmail version 8.13.3 - Revision 2.007 - 8 December 2008/8.8.6; Wed, 21 Jul 2010 11:17:01 -0400 (EDT)</example>
|
1536
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1464
1537
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1465
1538
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1466
1539
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1467
1540
|
<param pos="1" name="host.name"/>
|
1468
1541
|
<param pos="2" name="service.version"/>
|
1542
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1469
1543
|
<param pos="3" name="system.time"/>
|
1470
1544
|
</fingerprint>
|
1471
1545
|
|
@@ -1480,8 +1554,10 @@
|
|
1480
1554
|
<example host.name="foo.bar">foo.bar ESMTP Sendmail ready. </example>
|
1481
1555
|
<example host.name="foo.bar">foo.bar ESMTP Sendmail</example>
|
1482
1556
|
<example host.name="foo.bar">foo.bar Sendmail ready. </example>
|
1557
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1483
1558
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1484
1559
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1560
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:-"/>
|
1485
1561
|
<param pos="1" name="host.name"/>
|
1486
1562
|
<param pos="2" name="system.time"/>
|
1487
1563
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
@@ -1490,10 +1566,12 @@
|
|
1490
1566
|
<fingerprint pattern="^ESMTP Sendmail +([^/ ]+) */ *([^/ ]+); (\w\w\w, \d+ \w\w\w \d\d\d\d [\d:]+ [-+]\d\d\d\d)$">
|
1491
1567
|
<description>Sendmail - with version and date, w/o hostname or platform (semicolon variant)</description>
|
1492
1568
|
<example service.version="8.13.1" sendmail.config.version="8.13.1" system.time="Thu, 30 Nov 2017 01:58:22 -0700">ESMTP Sendmail 8.13.1/8.13.1; Thu, 30 Nov 2017 01:58:22 -0700</example>
|
1569
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1493
1570
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1494
1571
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1495
1572
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1496
1573
|
<param pos="1" name="service.version"/>
|
1574
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1497
1575
|
<param pos="2" name="sendmail.config.version"/>
|
1498
1576
|
<param pos="3" name="system.time"/>
|
1499
1577
|
</fingerprint>
|
@@ -1501,11 +1579,13 @@
|
|
1501
1579
|
<fingerprint pattern="^([^ ]+) +ESMTP +Sendmail ([^ /]+) \([^\)]+\) *(.+) \(.+\)$">
|
1502
1580
|
<description>Sendmail - unknown (date in version string variant)</description>
|
1503
1581
|
<example>mail.foo.bar ESMTP Sendmail 8.11.1 (1.1.2.11/12Jul01-1016AM) Wed, 8 Jan 2003 11:21:22 +0100 (MET)</example>
|
1582
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1504
1583
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1505
1584
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1506
1585
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss Z"/>
|
1507
1586
|
<param pos="1" name="host.name"/>
|
1508
1587
|
<param pos="2" name="service.version"/>
|
1588
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1509
1589
|
<param pos="3" name="system.time"/>
|
1510
1590
|
</fingerprint>
|
1511
1591
|
|
@@ -1513,19 +1593,23 @@
|
|
1513
1593
|
|
1514
1594
|
<fingerprint pattern="^([^ ]+) Sendmail ([^;]+); ([^;\.]+)$">
|
1515
1595
|
<description>Sendmail - unknown platform, variant 1</description>
|
1596
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1516
1597
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1517
1598
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1518
1599
|
<param pos="0" name="system.time.format" value="EEE, d MMM yyyy HH:mm:ss zzz"/>
|
1519
1600
|
<param pos="1" name="host.name"/>
|
1520
1601
|
<param pos="2" name="service.version"/>
|
1602
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1521
1603
|
<param pos="3" name="system.time"/>
|
1522
1604
|
</fingerprint>
|
1523
1605
|
|
1524
1606
|
<fingerprint pattern="^Sendmail ([^/]+)/([^/]+) ready on ([^ ]+)$">
|
1525
1607
|
<description>Sendmail - basic with version and date</description>
|
1608
|
+
<param pos="0" name="service.vendor" value="Sendmail"/>
|
1526
1609
|
<param pos="0" name="service.family" value="Sendmail"/>
|
1527
1610
|
<param pos="0" name="service.product" value="Sendmail"/>
|
1528
1611
|
<param pos="1" name="service.version"/>
|
1612
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sendmail:sendmail:{service.version}"/>
|
1529
1613
|
<param pos="2" name="sendmail.config.version"/>
|
1530
1614
|
<param pos="3" name="host.name"/>
|
1531
1615
|
</fingerprint>
|
@@ -1751,11 +1835,12 @@
|
|
1751
1835
|
<example host.name="foo.bar" service.version="5.3.1">foo.bar ESMTP CommuniGate Pro 5.3.1</example>
|
1752
1836
|
<example host.name="foo.bar" service.version="6.2c3">foo.bar ESMTP CommuniGate Pro 6.2c3</example>
|
1753
1837
|
<example host.name="foo.bar" service.version="4.3.12">foo.bar ESMTP CommuniGate Pro 4.3.12. It is you again :-(</example>
|
1754
|
-
<param pos="0" name="service.vendor" value="
|
1838
|
+
<param pos="0" name="service.vendor" value="Communigate"/>
|
1755
1839
|
<param pos="0" name="service.family" value="Pro"/>
|
1756
|
-
<param pos="0" name="service.product" value="
|
1840
|
+
<param pos="0" name="service.product" value="Communigate Pro"/>
|
1757
1841
|
<param pos="1" name="host.name"/>
|
1758
1842
|
<param pos="2" name="service.version"/>
|
1843
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:communigate:communigate_pro:{service.version}"/>
|
1759
1844
|
</fingerprint>
|
1760
1845
|
|
1761
1846
|
<fingerprint pattern="^(\S+) NO UCE NO UBE NO RELAY PROBES ESMTP">
|