Penetration Testing mailing list archives

RE: nessus which plug'in reports which vulnerability?

From: "Vaccare, Anthony" <rvaccare () ola state md us>
Date: Wed, 25 Feb 2004 09:13:58 -0500

No problem cissper.  It was a good question, something I hadn't even
thought about.  So, it goes to show that there's always someone else out
there that has the same questions as you.  If you haven't already, I
recommend that you join the Nessus ListServ (there is a link on Nessus'
web site, www.nessus.org).  It's a very busy ListServ, as you can
imagine, so if you aren't fond of getting a lot of e-mails, then you may
wish to abstain.  I have all messages from that ListServ forwarded to a
folder, where I can view them when I have time.  A lot of them, I don't
read, but I have an archive of topics in case I ever need some answers.
Also, the owner of Nessus, Renaud Deraison, is VERY responsive to
questions posed by ListServ members.  Good Luck!


-----Original Message-----
From: cissper [mailto:cissper () yahoo com au] 
Sent: Tuesday, February 24, 2004 2:42 AM
To: pen-test () securityfocus com
Subject: RE: nessus which plug'in reports which vulnerability?


Dear all

I thank you all for your responses and valuable help!!!

To quickly summarise the conclusion:

A HTML report generated by the nessus Windows client does not provide
the nessusID for an identified vulnerability. A report generated on the
Linux GUI does link a vulnerability to the nessus plug-in.

So we just found another good reason for using Linux :-)

Kind regards
cissper



------------------------------------------------------------------------
---
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection

Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.securityfocus.com/sponsor/Astaro_pen-test_040219
------------------------------------------------------------------------
----



*************************************************************
Scanned by net.work.Maryland Antivirus Service ...
the Backbone of eMaryland, the Digital State.
*************************************************************


---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

nessus which plug'in reports which vulnerability? cissper (Feb 22)
- Re: nessus which plug'in reports which vulnerability? Javier Fernandez-Sanguino (Feb 24)
- RE: nessus which plug'in reports which vulnerability? Pete Herzog (Feb 24)
- RE: nessus which plug'in reports which vulnerability? Harshul Nayak (Feb 24)
- <Possible follow-ups>
- RE: nessus which plug'in reports which vulnerability? MARTIN M. Bénoni (Feb 24)
- RE: nessus which plug'in reports which vulnerability? Vaccare, Anthony (Feb 24)
- RE: nessus which plug'in reports which vulnerability? cissper (Feb 25)
- RE: nessus which plug'in reports which vulnerability? Vaccare, Anthony (Feb 25)