On Dec 10, 2008, at 2:34 PM, christopher ashby wrote: > Noticing some new plugin published, I attempted to execute this script > again as root: > > [EMAIL PROTECTED]:/home/cashby# perl -T > /opt/nessus/auto/update-nessus-plugins -bps > > /home/cashby/plugin-report.txt > > this is the error received: > Can't run 'describe-nessus-plugin -f
If I've been following along correctly, you put describe-nessus-plugin in /opt/nessus/auto but didn't add that to the PATH environment variable in update-nessus-plugins. > [EMAIL PROTECTED]:/home/cashby# perl -T > /opt/nessus/auto/describe-nessus-plugin -f > bugtraq_id,category,cve_id,family,id,name,risk,summary,version,xref -l > english /opt/nessus/lib/nessus/plugins/powerdns_malformed_query.nasl > > I received the following error: > > /opt/nessus/lib/nessus/plugins/powerdns_malformed_query.nasl > Insecure dependency in sprintf while running with -T switch at > /opt/nessus/auto/describe-nessus-plugin line 510. > > Is it possible to remove the -T switch from the first line of this > code, and still have it properly execute? That wouldn't be a good idea. Taint mode helps ensure that malicious input doesn't get used when invoking a subshell or to modify files and the like. Which version of Perl are you using (eg, "perl -V")? And what modifications if any have you made to describe-nessus-plugins? George -- [EMAIL PROTECTED] _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
