On Thu Apr 14 2005 at 14:20, Harald Astrand wrote: > I am trying to run a Nessus scan from the command line using the Nmap > wrapper to excecute a TCP SYN and UDP scan to a host.
This is now disabled in safe checks because this is known to crash broken IP stacks. If you don't want to run Nessus without safe checks, run Nmap before Nessus then import the results. This is the best thing to do anyway, even without safe checks, as the newest version of Nmap are more efficient at scanning a whole network in one shot than one host at a time. For example, you can try something like: nmap -oG my_scan.txt -sS -sU -sR -O -v -p 1-65535 -T Aggressive \ --host_timeout 3600000 target1 target2 [...] Note that - UDP scan is not reliable and is not useful for Nessus - running Nmap is not compulsary: Nessus can get results from amap, snmpwalk, netstat, and two internal scanners (SYN scan or TCP). > However, some of the parameters seem not being set correctly when Nessus > (2.2.4) invokes Nmap (3.81). > This used to work in the previous version of Nessus and Nmap. Yes but we switched to a safer behaviour. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
