> > > > what is a trusted-script? > > This is a Nessus 2.1.0 novelty (please bear in mind that Nessus 2.1.x is > considered as unstable at this time, and potentially dangerous. Use the > 2.0.x branch if you want stability). stability? who wants stability!
> > "trusted" scripts will have the ability to execute local commands > (calling nikto, nmap, whatever). This will facilitate the inclusion of > third-party programs by avoiding to create a .nes plugins for each of > them (which is painful to maintain and bug-prone). > Cool: I have a bunch of things I want to do, wondering about documentation on it. guess we would not need nikto (you did) hydro, nmap (you mentioned). also, some of the 'smb browse' functions seem to work better outside of nessus: Case in point: smbclient can so smbmx calls, get returns larger than the (4128?) bytes. and some of the samba functions work better from cmd prompts. We can also run some of the third party audit type plugin, like 'john', if we pull out cisco 'enable' passwords via the http:// cisco bug we can run the cisco cracks, etc. would of course need to make sure we can't accidentally run 'passwd', yppasswd. Are you thinking of a 'sudo' type jail for these? or as in sendmail, the 'smsh' type thing? -- Michael Scheidell, CEO SECNAP Network Security, LLC Sales: 866-SECNAPNET / (1-866-732-6276) Main: 561-368-9561 / www.secnap.net Looking for a career in Internet security? http://www.secnap.net/employment/
