search

inspector-cochise / cochise

An audit tool for the apache webserver assisting on the BSI audit for the apache.
www.inspector-cochise.de
GNU General Public License v3.0
1 stars 0 forks source link

Check if s.th. changed for multiple runs #43

Open inspector-cochise opened 12 years ago

inspector-cochise commented 12 years ago

Now a manual question that has been (positively) answered once, always get's the same input reproduced. Even when something vital has changed, like there appears another module in the list of loaded modules.

Every question that is affected by this effect knows about it's special properties. So just hash this property (MessageDigest.getInstance("MD5") or similar), save it and every new time compare it to the last one if something changed don't let it go through.

Completely remove the replay methods!

inspector-cochise commented 12 years ago

So that means a question should store all the relevant circumstances under which it had been answered.

Sounds like a lot of equals and hashValue implementations to me...

inspector-cochise commented 12 years ago

just to say it: This issue is only relevant for the ConsoleUI and thus will maybe left open for some time.