I see the following in my Apache web logs after each Nessus scan:- GET GET %2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini GET GET %2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/winnt/win.ini
I think that this duplication of GET is rather an odd construct and was wondering a) Is this intentional, if so what does it show? or b) is this an error in the writing of the Nessus rule? I have done a quick scan of the plugins and the nearest I can find is 'analogx_traversal.nasl' (but I could be wrong) but I don't see why it duplicates the 'GET'. Can someone put me out of my misery and let me know what is going on here. regards, Brian P.S. I guess I need to find some time and try writing a few nessus plugins and hopefully improve my understanding! _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
