On Thu, Dec 18, 2003 at 10:52:25AM +0200, Yoni - Shocksite wrote: > I have understood that i could set the nessusrc throught the script > update-nessusrc and i have began to use it. > > I have tried to exclude all and set only top sans. > But i i check, (summary (-s)) a lot seams to me enabled.
Realize that there are 338 CVE Ids in the current Top20 List, of which my update-nessusrc with the --top20 option should identify 220+, depending on the set of plugins available to you. > 1/ how can i be sure that plugin are ON or OFF In general, plugins are on or off based on their values in the config file. Further, those that aren't listed at all are regarded as enabled. Finally, if you enable safe_checks, dangerous plugins will never be run regardless of their settings. > 2/ if i change things on Nessus throught Xwindow does that change teh > nessusrc permanetly Yes. > 3/ is there a nessusrc strategy guide somewhere ? Joshua Knarr posted earlier this week about two primers on Nessus available on SecurityFocus. Look back through the archives to find it. The second offers some particularly good idea on choosing what to scan for and how. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
