I'd like to announce the availability of update-nessus-plugins 1.00. This Perl script updates to the latest set of plugins for Nessus and optionally creates a backup of existing plugins, prints a summary of new / changed plugins, and parses new / changed plugins to check for errors. It calls nessus-update-plugins to do the actual updates.
Here's a snippet from a sample summary report:
---- snip, snip, snip ----
basomail_overflow.nasl
Status: added
Id: 11674
Name: BaSoMail SMTP Command HELO overflow
Family: SMTP problems
Category: destructive_attack
Summary: Checks if the remote mail server can be oveflown
Version: $Revision: 1.2 $
CVE-ID(s): n/a
eviewer.nasl
Status: changed
Id: 10361
Name: SalesLogix Eviewer WebApp crash
Family: Denial of Service
Category: kill_host
Summary: Crashes Eviewer
Version: $Revision: 1.19 $
CVE-ID(s): CVE-2000-0278
Changes:
10- script_version ("$Revision: 1.18 $");
10+ script_version ("$Revision: 1.19 $");
--------
78+ if(!soc)exit(0);
--------
---- snip, snip, snip ----
update-nessus-plugins is free and should work on any unix-like system
with Perl 5 and a working copy of nessus-update-plugins. It also
requires the following modules: Algorithm::Diff, Archive::Tar, Carp,
Digest::MD5, File::Find, Getopt::Long, and POSIX. If your system does
not have these modules installed already, visit CPAN
(<http://search.cpan.org/>) for help. Note that Algorithm::Diff and
Archive::Tar are not included with the default Perl distribution so you
may need to install them yourself.
Let me know, preferably off-list, if you use it and encounter any
problems using it.
George
--
[EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
