Hi, What's the precedent for dealing with known false positives?
I don't think there's any sensible way to "fix" the test (though I could be mistaken) and the false positive only occurs in an edge case, but can we add a note or something explaining the circumstances under which the false positive occurs, and how to prevent it? I've posted the full details here: http://harryjohnston.wordpress.com/2014/08/18/why-does-openvas-report-cve-2003-0042-when-my-server-isnt-running-tomcat/ Please advise. :-)
_______________________________________________ Openvas-plugins mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
