I tried to summarize the problems that may occur with nikto.nasl http://ma75.blogspot.com/2008/05/en-calling-nikto-from-nessus.html
* nikto.pl has to be found in $PATH when nessusd is run, i.e. when the plugins are compiled and when the daemon is started. Nessus does not look for any other command name (nikto, nikto.sh, etc.) that may be installed by any distro-tuned package. The file (under /opt/nessus/lib/nessus/plugins) is nikto.nasl, the script ID is 14260, the name is "Nikto (NASL wrapper)", you should find in the "CGI abuses" family. If you do not see it, fix you $PATH, make sure that nikto.pl is executable, rerun nessusd -R and restart the daemon. * Some people/distros install nikto.pl into a specific directory like /opt/nikto-2.02/ and add a link /usr/local/bin/nikto.pl. This will not work as you need to go into the Nikto directory before launching the command; otherwise, Nikto will not find its data files. Nessus does not read the link and would chdir to /usr/local/bin instead of /opt/nikto-2.02. If you have such a configuration, either remove the link or make sure that /opt/nikto-2.02 appears before /usr/local/bin in $PATH. * Last but not least, nikto.nasl is disabled by default. You'll have to change its preferences. Change "Enable Nikto" from "no" to "yes". -- http://www.bigfoot.com/~arboi http://ma75.blogspot.com/ PGP key ID : 0x0BBABA91 - 0x1320924F0BBABA91 Fingerprint: 1048 B09B EEAF 20AA F645 2E1A 1320 924F 0BBA BA91 _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
