Thanks for your help! I suppose that leads to my next question then. I need to be able to find a way of emailing only when new ports are discovered as open. Something I noticed is the "Risk Factor" of the Nmap (NASL Wrapper) scanner says it has a Risk of "High", yet when it discovers new ports they are placed as either Log or Low threat level. I think I may be misunderstanding what the Risk column represents in the Scan Config. If I could get the ports that OpenVAS to actually be something higher than Log or Low, I could possibly override them to be Low after I have verified they are fine, and that would have the added benefit of making the Threat Level increase, and kicking off an email.
Thanks again for your help! On 5/12/2012 3:56 AM, Matthew Mundell wrote: Is it possible to have an alert email sent when the Threat Count has increased and not necessarily the Threat Level along with it? Basically I am trying to get an email sent out when a new open port is discovered by the "Nmap NASL Wrapper" port scanner regardless of if it has increased the Threat Level as a result.No, this is not currently possible. The only conditions at the moment are the three that appear in the GSA.-- Greenbone Networks GmbH Neuer Graben 17, 49074 Osnabrueck, Germany | AG Osnabrueck, HR B 202460 Executive Directors: Lukas Grunwald, Dr. Jan-Oliver Wagner |
_______________________________________________ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss