On Tue, Dec 09, 2003 at 12:24:30PM +0100, Javier Fernandez-Sanguino wrote:
Since this seems to came up fairly often. Why not make a list of hardware that seems to break when scanned by Nessus? (Even if enabling safe_checks and disabling dangerous plugins). Let's try this (from recent threads and some googling on DoS vulnerabilities in Bugtraq)
Format: Hardware/software type: problem description
This is a very good list, however I think some of the items crash when scanned without safe checks while other crash even if safe checks are enabled.
Probably, I just retrieved the information from mailing lists. Didn't test it myself. However all the portscan related crashes will appear regardless of safe_checks IIRC.
Would it be possible to make a more detailed list like :
Hardware, Problem Type, safe_checks ?, DoS enabled ?
I would also add 'port_scan?' since many of the DoS are related to them.
As for the printers, Nessus does not scan them any more, except if the relevant safeguard plugin is disabled.
Wouldn't it be best to have a "known_problems" page in www.nessus.org where people could introduce this information and make it populate a database? The same database information could be used to extract and up-to-date list of known hardware problems.
I'm basicly thinking of a php page that extracted/introduced information into a simple "database" (it could be a plain file also).
Maybe this list could be used to initially populate the database (with the safe_checks/DoS checks questions set to 'unknown' initially). And have people that ask this question or have problems referred to that same page...
Worth it?
Regards
Javi
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
