Hello,
finally the OpenVAS developers are happy to announce that
openvas-libnasl 0.9.1 is released.
The most important change with this release is the
introduction of GnuPG detached signature(s) support.
The previous inline signature method has been removed.
This is the last basic change to allow to start a OpenVAS
feed for network vulnerability tests (NVTs, aka pugins).
This library belongs to the set of modules that are a forked
development of the network security scanner Nessus.
There were several reasons for this fork. One being that Nessus 3, the
successor of Nessus 2, is a proprietary product rather than continued
under GNU GPL license. Another being that due to OpenSSL license issues legal
distribution of any binaries is at least questionable.
openvas-libnasl is licensed under GNU GPLv2.
Main changes since 0.9.0 (2007-07-27):
* Now tests for minimum required version of openvas-libraries during configure.
* Missing signatures are now treated like bad signatures.
* Removed "-S" option for signing a plugin from "nasl" command.
* Support of checking detached GnuPG signatures for .nasl files.
* Extended test suite for signature verification.
* Added gpgme (the crypto interface library for GnuPG) as required dependency.
* Removed installation of nessus_org.pem.
* Introduced version handling of its own for openvas-libnasl.
* Fixed paths for state_dir.
* Switched on all compiler warnings during build by default.
* Various compiler warning resolved.
* Various code cleanups.
Download and more information on the OpenVAS Server page:
http://www.openvas.org/openvas-server.html
Best regards
Jan-Oliver Wagner
--
Dr. Jan-Oliver Wagner Intevation GmbH, Osnabrück
Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-announce mailing list
Openvas-announce@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-announce
