I need to exclude a list of systems as being valid targets. They should never be scanned (they're tarpits). I found the following when searching for how to configure nessus for this. The only problem is nessus wipes the configuration every time it is run. Is this dated? Or am I missing something? I'm using nessus 3.0.2 and scanning with the commandline client in batch. The configuration file is specified using -c.
> On Mon, Apr 22, 2002 at 12:31:20PM -0500, John McCain wrote: > > If one is using a host list file as the target for nessus, and one would > > like to scan a class B network, but exclude 5 or 6 hosts, how might one > > accomplish this? > > Assuming you want to exclude, say, 192.168.1.3 and 192.168.1.123 from > testing, you'd edit /usr/local/etc/nessus/nessusd.rules [*] and write in it : > > deny 192.168.1.3 > deny 192.168.1.123 > default accept > > [*] Or /usr/local/var/nessus/users/<yourlogin>/rules or > ~/.nessusrc in the "RULES" section Tim Doty | Information Technology Systems Security Analyst | University of Missouri - Rolla E-Mail: [EMAIL PROTECTED] | 104 Computer Science Bldg. Fax: (573) 341-4216 | 1870 Miner Circle Voice: (573) 341-7844 | Rolla, MO 65409-0360
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
