christopher ashby wrote: > List- > > Was just wondering how everyone manages there plug-in subscriptions, > more specifically what plug-ins were updated, added, and or removed > (if applicable). I would like to receive a daily report either > automatically created which would inform me of all the updates that > have been applied to existing plug-ins, and any new ones that have > been downloaded from the repo. > > Does anyone even manage plug-in libraries this way? Is it even > possible? Any suggestions would be helpful. >
Hi Chris, Tenable offers an RSS feed of all new plugins. http://www.nessus.org/rss/ We offer updates for new Nessus checks, as well as our Passive Vulnerability Scanner, new log normalizers for the Log Correlation Engine and also updates to audit files for Nessus Professional Feed and Security Center users. Many of the plugins change very often. For example, the anti-virus plugins change on a daily basis. We also perform a great deal of content management on the plugins to make more accurate reports, links to other places for more information and in some case even rename plugins to describe them better. Most Nessus users I speak with perform a plugin update before performing a scan. In the Security Center, we do have a feature where a user can select a scanning policy of options, Nessus plugins families, and then "Lock It" such that if new plugins are available in that family, they won't be run. This is usful for performing the same exact scan on different parts of the network, especially if it takes you longer than a few days to complete your scan. Ron Gula Tenable Network Security _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
