infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix bruteforce validators to accept nil 

bruteforce_speed isn't always required, because the speed checker
already handles nil (and presumes the user wants the fastest possible).

See also MSP-11842
bug/bundler_fix
Tod Beardsley 2014-12-12 13:57:37 -06:00
parent 183acb9582
commit ac004d2770
No known key found for this signature in database
GPG Key ID: BD63D0A3EA19CAAC
2 changed files with 29 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/metasploit/framework/login_scanner/base.rb
View File

@ -57,8 +57,8 @@ module Metasploit
inclusion: { in: [true, false] } inclusion: { in: [true, false] }
validates :bruteforce_speed, validates :bruteforce_speed,
presence: false,
numericality: { numericality: {
allow_nil: true,
only_integer: true, only_integer: true,
greater_than_or_equal_to: 0, greater_than_or_equal_to: 0,
less_than_or_equal_to: 5 less_than_or_equal_to: 5

29
spec/lib/metasploit/framework/login_scanner/base_spec.rb
View File

@ -12,12 +12,33 @@ describe Metasploit::Framework::LoginScanner::Base do
end end
} }
subject(:login_scanner) { base_class.new } let(:options) {
{
connection_timeout: 1,
cred_details: ["user", "pass"],
host: '1.2.3.4',
port: 4444,
stop_on_success: true,
bruteforce_speed: 5,
}
}
subject(:login_scanner) {
base_class.new(options)
}
it { should respond_to :bruteforce_speed } it { should respond_to :bruteforce_speed }
context 'validations' do context 'validations' do
it 'is valid!' do
expect(login_scanner).to be_valid
end
context 'bruteforce_speed' do context 'bruteforce_speed' do
it 'is not valid for a non-number' do it 'is not valid for a non-number' do
login_scanner.bruteforce_speed = "a" login_scanner.bruteforce_speed = "a"
expect(login_scanner).to_not be_valid expect(login_scanner).to_not be_valid
@ -36,11 +57,17 @@ describe Metasploit::Framework::LoginScanner::Base do
expect(login_scanner.errors[:bruteforce_speed]).to include "must be greater than or equal to 0" expect(login_scanner.errors[:bruteforce_speed]).to include "must be greater than or equal to 0"
end end
it 'is nil' do
login_scanner.bruteforce_speed = nil
expect(login_scanner).to be_valid
end
it 'is not greater than five' do it 'is not greater than five' do
login_scanner.bruteforce_speed = "6" login_scanner.bruteforce_speed = "6"
expect(login_scanner).to_not be_valid expect(login_scanner).to_not be_valid
expect(login_scanner.errors[:bruteforce_speed]).to include "must be less than or equal to 5" expect(login_scanner.errors[:bruteforce_speed]).to include "must be less than or equal to 5"
end end
end end
it { should respond_to :sleep_time } it { should respond_to :sleep_time }