Hello Felix, > -----Original Message----- > From: openvas-devel-boun...@wald.intevation.org > [mailto:openvas-devel-boun...@wald.intevation.org] On Behalf > Of Felix Wolfsteller > Sent: Friday, February 26, 2010 4:16 PM > To: openvas-devel@wald.intevation.org > Subject: Re: [Openvas-devel] CR #44 - Integrating NMAP NSE's > into OpenVAS > > I like the idea very much but I fear that we loose some of > the optimizations done by OpenVAS (e.g. only check a banner > from a port if that port is known to be open, shared sockets, > share infos through KB).
Yes, it'll run as a separate process for each NSE. We can give the port etc as args though. But, this is a small number of set we are talking about. I don't expect NSE numbers to grow into too many, nor is a replacement for NVT's written in NASL's. > Afaiu, each NSE/Lua script does everything from start to end > by itself. Is that correct? Yes. > Would it be possible to write a > small NSE/Lua library that circumenvent this problem, e.g. to > rely on the KB for port states instead checking the port itself? That would mean changes to Nmap, may be something like libnmap (when we have it) would solve that? Chandra. _______________________________________________ Openvas-devel mailing list Openvas-devel@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
