* Michael Meyer [11. May 2009]: > > Yes, I think this would be a good idea. We could define a standard > > disclaimer text which plugins could use whenever they try remote version > > identification. > > Ok, somebody must define this "disclaimer". Any volunteers? :-) > I saw that the newest plugins from secpod contains the following: > > ***** > NOTE: Please, ignore the warning if Patch is already applied. > ***** > > Is that enough?
I would propose: ***** This warning was generated because $SOFTWARE on $REMOTE_HOST identified itself as $VERSION and the authors of $SOFTWARE have declared versions $FROM through $UNTIL to be affected by this issue. Please note that this issue might have already been fixed by your distribution maintainers without increasing the version number reported by the software. If you are in doubt, please refer to the security announcements from the maintainers of your distribution. If you have identified this warning as a false positive, you can create a filter by doing $(CREATE_FILTER_HOWTO). ***** What do you think? Regards, Michael -- Michael Wiegand | OpenPGP: D7D049EC | Intevation GmbH - www.intevation.de Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
pgpGGG4TS8x4P.pgp
Description: PGP signature
_______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
