RE: Nessus did not recognize the patch

[John Scherff]

I had similar problems.  This can happen if you re-scan within the knowledge base max age window (default 10 days). Try tuning your KB settings.  My problems went away when I set save_knowledge_base to yes and set kb_restore to no.  I believe (and I may be mistaken) that this allows plugins to re-use information from other plugins within the same scan, but prevents nessus from using information in the knowledge  base in future scans.

 

R/ John Scherff

24 Hour Fitness

---

From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mansour
Sent: Tuesday, September 20, 2005 4:38 AM
To: nessus@list.nessus.org
Subject: Nessus did not recognize the patch

Hello every body,
I'm new in nessus and linux systems, I just install nessus and test it, its works fin. The problem is when I scan one system (given user name & password to perform local security checks) its give me a lot of security holes, but when I can it again after I applied the required patch, the same vulnerabilities appear !!
For example : I install nessus in fedora OS, and let him to scan the machine it self (fedora), it shows this vulnerability :

Vulnerability found on port general/tcp
The remote host is missing the patch for the advisory FEDORA-2005-562 (net-snmp).

Solution : http://www.fedoranews.org/blog/index.php?p=755

So, I download the required patch ( http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/i386/net-snmp-5.2.1.2-FC3.1.i386.rpm ) but when I scan the machine again, the same vulnerability appear again !!

And I think it is a False Positives, how can I remove this False Positives from the report ? why its appear ? is the patch did not installed ? I let nessus to scan the machine with user name and password, so it should know I already patched the machine !!

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus