Hi,
for my internal bookkeeping, I have to now which plugins where really
run against a given IP address. Is there a way to get this out of the
system as of today? I have a patch (see attachment) which just writes
the plugin# in addition to the other info into the log file and then
scan the logfiles after a scan. Comments/ideas?
--nk
--
Norbert Kiesel <[EMAIL PROTECTED]>
TBD Networks
Index: nessusd/attack.c
===================================================================
RCS file: /usr/local/cvs/nessus-core/nessusd/attack.c,v
retrieving revision 1.154
diff -u -r1.154 attack.c
--- nessusd/attack.c 14 Dec 2002 12:36:37 -0000 1.154
+++ nessusd/attack.c 27 Dec 2002 17:48:12 -0000
@@ -225,9 +225,10 @@
category == ACT_DENIAL))
{
if(preferences_log_whole_attack(preferences))
- log_write("user %s : Not launching %s against %s %s (this is not an error)\n",
+ log_write("user %s : Not launching %s<%d> against %s %s (this is not an error)\n",
attack_user_name(globals),
plugins->name,
+ (int)arg_get_value(arg_get_value(plugins->value, "plugin_args"), "ID"),
hostname,
"because safe checks are enabled");
return 0;
@@ -259,9 +260,10 @@
* ACT_SCANNER, ACT_GATHER_INFO, ACT_ATTACK and ACT_DENIAL
*/
if(preferences_log_whole_attack(preferences))
- log_write("user %s : Not launching %s against %s %s (this is not an error)\n",
+ log_write("user %s : Not launching %s<%d> against %s %s (this is not an error)\n",
attack_user_name(globals),
plugins->name,
+ (int)arg_get_value(arg_get_value(plugins->value, "plugin_args"), "ID"),
hostname,
"because it has already been launched in the past");
@@ -287,9 +289,10 @@
return ERR_CANT_FORK;
if(preferences_log_whole_attack(preferences))
- log_write("user %s : launching %s against %s [%d]\n",
+ log_write("user %s : launching %s<%d> against %s [%d]\n",
attack_user_name(globals),
plugins->name,
+ (int)arg_get_value(arg_get_value(plugins->value, "plugin_args"), "ID"),
hostname,
pid);
