Re: [Openvas-discuss] Ideas and wishes for future improvements of OpenVAS
- Plugin severity override: some places value some vulnerabilities more than others. For example: some places rank anonymous CIFS connections as vital to their business. Others say its a big risk. Having a front end to override the degree instead of patching the plugin would be nice. - An option to say: do not add new plugins to the .nessusrc file. Or maybe, add all new ones as no. Sometimes I want to run a given set of plugins periodically. I don't want all new ones to also get run. - Ability to do a diff between two scan results. - database option for the results. On 5/16/07, Jan-Oliver Wagner [EMAIL PROTECTED] wrote: Hello, despite the fact that OpenVAS 1.0 ist not out yet, I'd already now like to hear about ideas what features or other improvements would be most interesting for OpenVAS for the tima past 1.0. From the list of wishes and ideas I hope to derive a roadmap that makes OpenVAS a interesting security network scanner. Of course I am aware that providing a steam of new plugins is one of the key factors to make OpenVAS interesting ;-) Best Jan -- Dr. Jan-Oliver WagnerIntevation GmbH, Osnabrück Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/ Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Ideas and wishes for future improvements of OpenVAS
On Wednesday 16 May 2007 21:00, Kenneth Ng wrote: - Plugin severity override: some places value some vulnerabilities more than others. For example: some places rank anonymous CIFS connections as vital to their business. Others say its a big risk. Having a front end to override the degree instead of patching the plugin would be nice. perhaps this is related to the false-positive marking discussion I remember to have read somewhere. Anyway, a good point. - An option to say: do not add new plugins to the .nessusrc file. Or maybe, add all new ones as no. Sometimes I want to run a given set of plugins periodically. I don't want all new ones to also get run. I remember to have read this wish before. Yes, I stumbled across this already myself. - Ability to do a diff between two scan results. A long-standing wish indeed. IMHO this should have high priority. It is a client-side feature though. So maybe to implement in NessusClient. - database option for the results. IIRC there even is/was a branch in Nessus CVS with this feature? Perhaps worth investigating this. Best Jan -- Dr. Jan-Oliver Wagner Intevation GmbH Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/ Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Ideas and wishes for future improvements ofOpenVAS
You aren't the only one Kenneth: http://mail.nessus.org/pipermail/nessus/2004-February/msg00164.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Kenneth Ng Sent: Wednesday, May 16, 2007 5:01 PM To: Jan-Oliver Wagner Cc: openvas-discuss@wald.intevation.org Subject: Re: [Openvas-discuss] Ideas and wishes for future improvements ofOpenVAS Oh, speaking of client side, have the API between the server and the client documented so that different front ends can be put in. Let say, I wanted to call open-vas from Perl, or Python, or whatever. You want wide eye dreaming? Build a front end client that will allow you to disconnect from the session, and then reconnect later. Or better yet, a client that allows you to disconnect and run background, and then can run a arbitrary command (like send email) when the scan is complete :-). And then you run the client again and it reconnect right where you left off. Yeah I'm a dreamer, but you asked :-). On 5/16/07, Jan-Oliver Wagner [EMAIL PROTECTED] wrote: On Wednesday 16 May 2007 21:00, Kenneth Ng wrote: - Ability to do a diff between two scan results. A long-standing wish indeed. IMHO this should have high priority. It is a client-side feature though. So maybe to implement in NessusClient. ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
