Hello, -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Jan-Oliver Wagner Sent: Monday, August 24, 2009 2:56 PM To: [email protected] Subject: [Openvas-plugins] network information: Security Note or Log?
> Hi, > I stumbled (again) across the question how we should treat > the results of NVTs like os_fingerprint.nasl which > tries to guess some information (here the OS) > and adds this to the KB. > It also sends a security_note about the result. > IMHO this should only be a log_message() as the OS > type as such has not relation to security status. I think all discovered information should be in the report, so security_note() is appropriate in this case. log_message() should only be used to log information such as plugins's inability to perform something, error messages etc., The discovered information is always useful to analyze the effectiveness of the report, not everyone looks at logs. Thanks, Chandra. _______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-plugins
