* Thomas Reinke [14. Feb 2009]:
> Better yet (and probably easier to do, and somewhat more clean while
> limiting changes), would be to tag a given distribution's LSCs with
> a unique kb entry (a simple boolean, within gather-package-list.nasl)
> and make the entire script have a
> "script_require_keys('<boolean kb entry');", thus ensuring
> that the daemon won't even launch the script if the distribution
> doesn't match. (Now that I think of it, I'm embarassed that we
> didn't do that earlier.)Yes, I think this is a good idea. We could set a key like "ssh/login/distribution/debian". It might also be worth considering to split OS/distro detection and package gathering. The information regarding the remote OS/distro might be useful for other NVTs/LSCs as well, even if the don't gather package information. This separation would allow for a more generalized OS detection and could possibly use information gathered by nmap or similar tools in the future. It would also make gather-package-list a lot leaner since it would have to bother with doing OS detection itself. The only downside I can think of is that this might require an additional ssh connection. What do you think, would this be useful? Regards, Michael -- Michael Wiegand | OpenPGP key: D7D049EC | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
pgpq1yHKhK9Rw.pgp
Description: PGP signature
_______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
