I turn off some plugins because they produce extensive but uninteresting results. Examples include checks for all but the latest version of an application and reports of information that can be obtained because I am scanning (Windows) with admin rights. Once you start picking plugins within a family, maintenance of the list of plugins becomes a real chore because any new plugins in the family come in as unselected.
I thought that plugin-reject in nessusd.rules might make my life easier, just reject the plugins that I don't want to see output from. Maintenance would just be occassional addition of plugins to the reject list. But I fear application detection plugins may be a problem. If I turn off a plugin that detects an application, will that also break detection of vulnerable versions of the application? Except for malware, I'm usually not interested in what is installed, just that I have current versions. I've asked about using selected plugins on this list before, but I think plugin-reject is a new option since I asked. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
