How to correctly modify nmap.nasl?

Thu, 08 May 2008 00:02:38 -0700 

Hello, everybody!

I prefer to use Nmap as scanner's backend  using nmap.nasl plugin
(http://www.nessus.org/documentation/nmap.nasl).

There is a option:

 argv[i++] = "-P0";     # Nmap ping is not reliable

but in the latest Nmap we can see that
"
 -PN (No ping)
          This option skips the Nmap discovery stage altogether.
Normally, Nmap uses this stage to determine active machines for
heavier scanning. By
          default, Nmap only performs heavy probing such as port
scans, version detection, or OS detection against hosts that are found
to be up.
          Disabling host discovery with -PN causes Nmap to attempt the
requested scanning functions against every target IP address
specified. So if a
          class B sized target address space (/16) is specified on the
command line, all 65,536 IP addresses are scanned. Proper host
discovery is skipped
          as with the list scan, but instead of stopping and printing
the target list, Nmap continues to perform requested functions as if
each target IP
          is active. For machines on a local ethernet network, ARP
scanning will still be performed (unless --send-ip is specified)
because Nmap needs MAC
          addresses to further scan target hosts. This option flag for
this used to be P0 (uses zero), but was renamed to avoid confusion
with protocol
          ping´s PO (uses the letter O) flag.
"
And so we need to replace -P0 with -PN in plugin's source.
But when I made these changes (and delete top line with "#TRUSTED
string") and tried to copy this plugin to Nessus plugin's dir I get
error message
"[EMAIL PROTECTED] ~/tmp % sudo /etc/init.d/nessusd restart
$Shutting down Nessus : .
$Starting Nessus : [29078](nmap.nasl:0xdd) A non-authenticated script
attempted to use an authenticated function - returning NULL

"
And I can't use this plugin :(

May be you have more fresh version of nmap.nasl with -PN option in it
or can advice how correctly to fix this ?

-- 
Тарас Иващенко (Taras Ivashchenko)
Use Debian - a free operating system (OS) for your computer
(http://www.debian.org).
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus

Reply via email to