We use multiple policies when doing scans, depending on the general target type (i.e. unix, windows, network devices, etc). Of course using custom policies neans that when new plugins come out you must update the policies accordingly.
This has always been time-consuming with Nessus, both 2.2.x and the 3.x versions. Both STAT Guardian and ISS Internet Scanner give a simple method to sort vulns so that you can easily see the newest additions. Nessus 3 does not, sadly. What I'd like to see in Nessus 3's policy editor is similar to what is done with NessusWX. The ability to not only view the vulns grouped by categorey or family, but to do searches as well. Best of all, the ability to sort by date of plugin release/update. In fact, even just the ability to sort by the plugin ID number would be a great boon. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Jeff Mercer - USPS CISO - SVA Team E-mail: [EMAIL PROTECTED] Phone : 919-501-9448 _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
