Hi,
I am trying to run a Nessus scan from the command line using the Nmap wrapper to excecute a TCP SYN and UDP scan to a host.
However, some of the parameters seem not being set correctly when Nessus (2.2.4) invokes Nmap (3.81).
This used to work in the previous version of Nessus and Nmap.
Some excerts from the nessusrc file used:
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
begin(SCANNER_SET)
10180 = no
10278 = no
10331 = no
10335 = no
10841 = no
10336 = no
10796 = no
11219 = no
14259 = yes
14272 = no
14274 = no
14663 = no
11840 = no
end(SCANNER_SET)
begin(SERVER_PREFS)
port_range = 1-65535
end(SERVER_PREFS)
begin(PLUGINS_PREFS)
Nmap (NASL wrapper)[radio]:TCP scanning technique : = SYN scan
Nmap (NASL wrapper)[checkbox]:UDP port scan = yes
Nmap (NASL wrapper)[checkbox]:Service scan = no
Nmap (NASL wrapper)[checkbox]:RPC port scan = no
Nmap (NASL wrapper)[checkbox]:Identify the remote OS = yes
Nmap (NASL wrapper)[checkbox]:Use hidden option to identify the remote OS = no
Nmap (NASL wrapper)[checkbox]:Fragment IP packets (bypasses firewalls) = no
Nmap (NASL wrapper)[checkbox]:Get Identd info = no
Nmap (NASL wrapper)[checkbox]:Do not randomize the order in which ports are scanned = yes
Nmap (NASL wrapper)[radio]:Timing policy : = Normal
Nmap (NASL wrapper)[checkbox]:Do not scan targets not in the file = no
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
I can find (using ps) that the nmap command that is being invoked (when scanning 127.0.0.1) is:
nmap -n -P0 -oG /usr/local/var/nessus/tmp/nmap-127.0.0.1-290762652 -sT -p 1-65535 -r 127.0.0.1
Thus it appears that the scan will not do the SYN scan, nor the UDP scan and not the check for the remote OS.
Does anyone know how to solve this issue?
Any help would be very appreciated!
Regards,
Harald
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
