I've had a recurring but intermittent problem running nessus on OpenBSD -- Sometimes nessus will hang in the middle of a scan for no apparent reason.
Specifically, the parent process for a specific system (that runs the .nasl and .nes scripts) hangs in the middle of a scan, which stops the entire scan until it is killed (with SIGTERM). The hang would occur fairly frequently with the nessus-1.0.x versions, and with 1.2.x it appeared to be getting better. I didn't experience a lockup with 1.2.5, but it is happening again with 1.2.6rc1. I suspect the problem lies somewhere in nessus' threading/signal handling code. I'm researching this now, but I'd appreciate any suggestions on where to look or how to debug this. -----Original Message----- From: Renaud Deraison [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 26, 2002 4:39 PM To: [EMAIL PROTECTED] Subject: About to release Nessus 1.2.6 - testers wanted ! Hi all, I'm in the process of releasing Nessus 1.2.6, which will bring a load of various fixes that should make everyone happy, and it should make the {Free,Net,Open}BSD users, as well as the MacOS X users even more happy (due to the new bpf management system). Before I do an official release, I would like to make a pre-release, Nessus 1.2.6rc1. Why ? Because I think (or hope) that Nessus 1.2.6 will be rock solid, and as soon as it's released, I will start the developement of Nessus 1.3.x (unstable again). So I'd like to minimize work involved in maintaining two trees. As soon as the 1.3.x tree is open, a lot of new features will go in. That's why I would like everyone to install and test Nessus 1.2.6rc1 (available from ftp://ftp.nessus.org/pub/nessus-testing/) and report any build failure, bug or nuisance. Here is the changelog, compared to 1.2.5 : 1.2.6 : . changes by Axel Nennker ([EMAIL PROTECTED]) - fixed the xml and html outputs - fixed array issues in a couple of plugins . changes by Michel Arboi ([EMAIL PROTECTED]) - ptyexecvp() replaced by nessus_popen() (*) . changes by Renaud Deraison ([EMAIL PROTECTED]) - Fixed a bug which may make nasl interpret backquoted strings (\n and \r) received from the network (problem noted by Pavel Kankovsky) - nmap_wrapper.nes calls _exit() instead of exit() (*) - nessus-update-plugins accept proxy users whose name or password have a space in it (problem noted by Patrice Arnal) - Solved the lack of bpf's on Free/Open/NetBSD and MacOSX by sharing _one_ among all the Nessus processes. As a result, Nessus's ping is much more effective on these platforms - bugfix in plug_set_key() which would eventually make some scripts take too long when writing in the KB - Plugins of family ACT_SETTINGS are run *after* plugins of family ACT_SCANNERS - replaced the implementation of md5 which was used when OpenSSL is disabled by the one from RSA (the old one would not work on a big-endian host) - Fixed plugins build issues on MacOS X - The nessus client compiles and links against GTK+-2.0. Of course, it will be horrible and instable, as the GTK team does not care about backward compatibility (*) These two modifications solve the problems of nmap hanging under FreeBSD - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body. - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
