On Thu Aug 12 2004 at 10:20, Jay Jacobson wrote: > With the new Nikto and Nmap NASL implementations added yesterday, how does > that affect the existing .nes implementations? If I have a .nessusrc file > with both #10336 (Nmap .nes) and #14259 (Nmap NASL) set to "yes" will it > run Nmap twice during the scan?
It will. Eventually, the .NES scanners will be removed, but we cannot do this immediately, as the new NASL scanners will not run without the latest bugfix in libnasl. First, we could disable the .NES if NASL_LEVEL is high enough (when the scripts are signed) > What is the difference between the .nes and NASL implementations (other > than the obvious language they are written in)? nmap.nasl can run "service scan" and store the results to the KB. Currently, it is not used. I have to add a new plugin for this. > Do the new NASL implementations work on the stable 2.0.x Nessus > branch? No, because you need "trusted" scripts. BTW, I don't have Nessus private key, so the two new plugins are not signed yet. If you want to test them, you'll have to set this option in nessusd.conf: nasl_no_signature_check = yes -- [EMAIL PROTECTED] http://arboi.da.ru FAQNOPI de fr.comp.securite http://faqnopi.da.ru/ NASL2 reference manual http://michel.arboi.free.fr/nasl2ref/ _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
