On Wed, Nov 02, 2016 at 03:52:44PM +0100, Christian Fischer wrote:
> 2. Network Vulnerability Tests (NVT)
>
> These are manually created tests which are e.g. checking actively and/or
> version/CPE based (e.g. cpe:/a:php:php:5.6.26) for a vulnerability. For
> these it doesn't matter if you have a custom build PHP or not, as long
> as PHP is correctly detected.
For example scripts/2016/gb_php_mult_vuln03_sep16_lin.nasl, right?
But I see, this test has:
(...)
script_dependencies("gb_php_detect.nasl", "os_fingerprint.nasl");
script_mandatory_keys("php/installed","Host/runs_unixoide");
script_require_ports("Services/www", 80);
(...)
And gb_php_detect.nasl also has this "script_require_ports("Services/www",
80);" dependency.
As I mentioned I don't have a running port 80 and I don't have a PHP
banner on it. Should there tests to be more generic? Based on
gb_php_detect_lin.nasl also?
Best,
Tom
--
> βItβs not the daily increase but the daily decrease.
> Hack away at the unessential.β
> β Bruce Lee
> http://tjadowski.sdf.org
_______________________________________________
Openvas-plugins mailing list
Openvas-plugins@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
