Hello, 2011/11/16 Matthew Mundell <matthew.mund...@greenbone.net>: >> I'd like to call for a vote on Change Request #57 (NVT Feed Product >> Detection Improvements): http://www.openvas.org/openvas-cr-57.html > > +1 for the CR, but I would like us to be clear on the use of the host > details in the implementation. > > The detection NVT is using the host details to pass info about the result > to the Manager. I wonder if this is going to work in all cases. For > example, when an NVT detects multiple versions of a program. Will the > Manager be able to tell which detection result is associated with which > vulnerability result? Also I wonder if the host details can be used this > way in general, to pass result-specific info (as opposed to host-specific > info). > In the proposed implementation I assume that every (CPE, location) combo is unique for a host. The 'detected_at' and 'detectec_by' host details help selecting the correct result. In case several ones are available (multiple instances of a same product detected) I filter with the presence of the location in the port or the description. This should work in any case, provided the detection script explicitly reports the location.
> This is why I'm asking on openvas-plugins if we need a result details > concept analogous to the host details. > > From what I understand, a result detail would provide a direct way for > Henri's patch to present the location and product to clients in this > situation, instead of Manager having to dig around for this special case. > That would probably be cleaner and more efficient, but more intrusive. That could also prevent from bloating the host details (that reach the user) with some information originating from the scanner and intended to the manager only. > Jan has been saying that in the long term the static result descriptions > are removed from the NVT. So what happens to the dynamic parts of results? > Perhaps they go in result details? > > Anyone have a clear perspective on this? > If there is an agreement on the concept I can give a shot at a sample implementation. Regards. -- Henri Doreau | Greenbone Networks GmbH | http://www.greenbone.net Neuer Graben 17, 49074 Osnabrueck, Germany | AG Osnabrueck, HR B 202460 Executive Directors: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-devel mailing list Openvas-devel@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
