I'm scanning a UNIX host with NessusWX 1.4.4 and Nessusd 2.0.10 .
I have a problem with OpenSSL scans, but I think the problem might arise with other plugins too.
When I launch a scan against a host with only plugins 12110 and 11875 enabled (safe checks on), I get as a result that based on the banner, I need to upgrade OpenSSL to a newer version.
However, when I launch a scan against that same host but with ALL PLUGINS ENABLED (still safe checks on), I do not get these results. All I get that is slightly related to OpenSSL is the result from a plugin that tells me what the HTTP banner is. But nowhere does it tell me that OpenSSL is too old.
I looked at nessusd.messages and the plugins 12110 and 11875 are shown as having been run:
[Fri Apr 16 09:35:25 2004][2738] user cossetpa : launching ssltest.nasl against 192.168.0.1 [3086]
[Fri Apr 16 09:35:26 2004][2738] ssltest.nasl (process 3086) finished its job in 1.209 seconds
[Fri Apr 16 09:36:25 2004][2738] user cossetpa : launching openssl_denial.nasl against 192.168.0.1 [3343]
[Fri Apr 16 09:36:26 2004][2738] openssl_denial.nasl (process 3343) finished its job in 0.668 seconds
Any idea if this is a bug or is there a setting that can be tuned to avoid this behaviour?
Thank You.
Patrick Cossette System Analyst
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
