On Sun, Mar 10, 2002 at 07:22:58PM +0100, Alois Treindl wrote:
Hi,
> Maybe nessus should not only check whether a requested URL gives a OK 200
> result, but look at the actual content it receives. Then it would
> notice that there are no security holes.
We try to do that when writing tests. But this is not always possible -
feel free to improve the relevant tests yourself and send back a patch.
The OK 200 issue has been beaten to death anyway. You'd better install a
RFC compliant server first.
-- Renaud
