On Tue, 6 Jun 2006, Rui Pereira (WCG) wrote:
However, it does not appear Nessus even tries to login to the web
application. Certainly it does not produce any web application
vulnerabilities at all.
Also disconcerting is the fact that Nessus does not run nikto, even though
it is in the path.
A few questions:
- Were the http_login.nasl and nikto.nasl plugins launched?
- Did the scan correctly find the HTTP ports?
- If you manually run 'nikto.pl -host [target]' from the command line, do
you receive the desired results?
- Anything interesting in the Nessus logs?
--
- Josh
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
