Renaud Deraison wrote:
Hi there,
I'm happy to announce to availability of NessusClient 1.0.0.RC1, a new
GTK GUI for Nessus.
Some comments (I hope you don't mind them being here instead of being
reported as bugs as I can't do that through bugs.nessus.org at the
moment):
1- It would be nice if it integrated with GNOME/KDE menus by
registering itself as an application (see
http://www.freedesktop.org/wiki/Standards_2fdesktop_2dentry_2dspec)
I do this in the Debian packages, so that users don't have to do it
manually (or using Smeg: http://www.realistanew.com/projects/smeg/)
2- The software is GPL, but links to OpenSSL, it should add an
exception in the COPYING file something like:
* In addition, as a special exception, the copyright holders give
* permission to link the code of portions of this program with the
* OpenSSL library under certain conditions as described in each
* individual source file, and distribute linked combinations
* including the two.
* You must obey the GNU General Public License in all respects
* for all of the code used other than OpenSSL. If you modify
* file(s) with this exception, you may extend this exception to your
* version of the file(s), but you are not obligated to do so. If
* you do not wish to do so, delete this exception statement from your
* version. If you delete this exception statement from all source
* files in the program, then also delete it here.
For more information:
http://www.openssl.org/support/faq.html#LEGAL2
and / or
http://www.gnome.org/~markmc/openssl-and-the-gpl.html
3- The COPYING file is out of date (uses the old FSF address, it
should use the following address " 51 Franklin St, Fifth Floor,
Boston, MA 02110-1301 USA"
4- The binary is named 'NessusClient' whileas the manpage refers to
'nessus'
5.- The User Manual compilation and installation is not included into
the main Makefile.
6.- It would be nice if the TeX file generated from LyX was
distributed with the source package, that way packagers could use it
to generate the ps/html versions. Notice that there is no way to
"automatically" have LyX reconfigure itself from the command line (in
order to retrieve TeX formats installed) so it is not easy to have
that compiled automatically and distributed with binary packages
(either with the client or as a separate 'nessusclient-doc' package)
7.- Would it be possible to have a separate GTK+ and CLI binary? This
has been requested by some people (see
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=265046) which would
like to install the client in a server (to program cron tasks to run
scans, for example) but not pull in all the X/GTK+ dependencies
required by it.
8.- Could it be possible to use a separate gdchart than the one
provided in the package? Maybe as a configure option? Debian, for
example, provides libgdchart-gd2 (see
http://packages.debian.org/unstable/source/libgdchart-gd2) and the
Nessus client compiles fine with it. Is there any reason to stick with
that ancient gdchart version?
9.- The source is missing an 'AUTHORS' file to list the main authors
of the code... I've reviewed all the (c) statements in the code and
could provide a list of authors, if you want one.
I'm surprised to see that it does not compile against the
nessus-libraries (like the previous GUI did) but provides a libnessus/
directory of its own which contains different headers than those
provided by nessus-libraries. Naming it 'libnessus' (instead of,
maybe, 'libnessus-client') is somewhat confusing.
BTW, it's rather nice that this client has i18n support. I'll try to
get around and provide a Spanish translation for it if time permits.
I have Debian packages ready, still have to test them, though, but
will send an e-mail to the list once they are (semi-ready)
Regards
Javier
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
