On Mon, May 08, 2006 at 02:10:55PM -0400, Bliss, Aaron wrote:
> looking inside the
> nessusrc file, there is a section called begin(PLUGIN_SET) AND
> end(PLUGIN_SET) with a whole bunch of numbers = yes in between; is this
> section defining what plugins will be used when scanning a machine?
Sort of. The PLUGIN_SET and SCANNER_SET list the plugins the client
wants to run. If the server has some plugins that are unlisted, though,
those will be run as well. [Except that "dangerous" plugins will not be
if safe checks are enabled.]
> P.S. our nessus server is configured to download plugins nightly. If
> so, is there an easy way to just tell the server (instead of specifying
> in the .nessusrc file) to just use all available plugins, since the
> server is updated daily?
Given what I said above, you could choose not to worry about updating
your config file and just let nessusd run unlisted plugins. If you want
to maintain control, though, there are two free third-party scripts
designed for this, both named update-nessusrc:
Edgeos' python-based update-nessusrc.py
http://www.edgeos.com/resources/
My perl-based update-nessusrc
http://www.tifaware.com/perl/update-nessusrc/
Mine probably has some additional functionality not in Edgeos' script,
but grab them both and judge for yourself.
George
--
[EMAIL PROTECTED]
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
