Send Nessus mailing list submissions to
nessus@list.nessus.org
To subscribe or unsubscribe via the World Wide Web, visit
http://mail.nessus.org/mailman/listinfo/nessus
or, via email, send a message with subject or body 'help' to
nessus-request@list.nessus.org
You can reach the person managing the list at
nessus-owner@list.nessus.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of Nessus digest..."
Today's Topics:
1. Re: User not allowed to scan! (daveads@voila.fr)
2. Re: sigpipe caughet (George A. Theall) (Juan B)
3. Which Port scanner can I use with Nessus? (m.zelder@arcor.de)
4. Which Port scanner can I use with Nessus? (m.zelder@arcor.de)
5. Re: Which Port scanner can I use with Nessus? (George A. Theall)
6. Re: Nessus fetch - error 2002 (George A. Theall)
7. RE: NeWT Question (jfvanmeter@comcast.net)
----------------------------------------------------------------------
Message: 1
Date: Thu, 23 Feb 2006 19:26:23 +0100 (CET)
From: daveads@voila.fr
Subject: Re: User not allowed to scan!
To: nessus@list.nessus.org
Message-ID: <27146886.1140719183254.JavaMail.www@wwinf4001>
Content-Type: text/plain; charset="utf-8"
Thank you George and Josh for your reply and help,
I edit the files before launch Nessusd and NessusClient and have the same
rules in nessusd.rules and user rules files.
I have resolved my problem, it was a problem with IP@ rules. Now it's work
great.
In fact I have used before Nessus 2.2.5 (OS Debian) with the following
rules on nessusd.rules and user rules files :
default accept
It's seem it doesn't work with my Nessus 3.0.1 installation (by the way
the installation is performed on OpenSuse 10 not Debian like I wrote in the
previous post).
Using Nessus 3, I have to write this rules (nessusd.rules and user rules
files) to have the authorization to launch the scan :
deny 100.100.100.111 (example)
default accept
or :
accept 100.100.100.101(example)
default deny
The rules ÃâÅdefault acceptÃâ alone in rules files doesnÃâât
work on
Nessus 3.0.1.
Thanks again to all.
David-L
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://mail.nessus.org/pipermail/nessus/attachments/20060223/a226ff43/attachment.html
------------------------------
Message: 2
Date: Thu, 23 Feb 2006 11:03:09 -0800 (PST)
From: Juan B <juanbabi@yahoo.com>
Subject: Re: sigpipe caughet (George A. Theall)
To: nessus@list.nessus.org
Message-ID: <20060223190309.3030.qmail@web36810.mail.mud.yahoo.com>
Content-Type: text/plain; charset=iso-8859-1
Hi,
I Use version 2.2.6 (for linux),
Thanks,
Juan
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
------------------------------
Message: 3
Date: Thu, 23 Feb 2006 23:02:00 +0100 (CET)
From: m.zelder@arcor.de
Subject: Which Port scanner can I use with Nessus?
To: nessus@list.nessus.org
Message-ID:
<12553925.1140732120077.JavaMail.ngmail@webmail-08.arcor-online.net
Content-Type: text/plain; charset=ISO-8859-1
Greetings all,
Can anybody tell me which Port scanner I can use with Nessus? Is it
possible to connect Nessus to other external Port scanner than Nmap?
M. Zelder
------------------------------
Message: 4
Date: Thu, 23 Feb 2006 15:30:01 +0100 (CET)
From: m.zelder@arcor.de
Subject: Which Port scanner can I use with Nessus?
To: nessus@list.nessus.org
Message-ID:
<18257260.1140705001260.JavaMail.ngmail@webmail-09.arcor-online.net
Content-Type: text/plain; charset=ISO-8859-1
Greetings all,
Can anybody tell me which Port scanner I can use with Nessus? Is it
possible to connect Nessus to other external Port scanner than Nmap?
M. Zelder
------------------------------
Message: 5
Date: Fri, 24 Feb 2006 07:10:35 -0500
From: "George A. Theall" <theall@tenablesecurity.com>
Subject: Re: Which Port scanner can I use with Nessus?
To: nessus@list.nessus.org
Message-ID: <43FEF7BB.4040806@tenablesecurity.com>
Content-Type: text/plain; charset=us-ascii
On Thu, Feb 23, 2006 at 11:02:00PM +0100, m.zelder@arcor.de wrote:
Can anybody tell me which Port scanner I can use with Nessus?
Go to <http://www.nessus.org/plugins/index.php?view=search> and search
on the "scanner" plugin family.
Is it
possible to connect Nessus to other external Port scanner than Nmap?
Given the way plugins work, you should be able to write a plugin to hook
in whatever scanner you want as long as it has a commandline interface
and runs on the same platform as Nessus. Performance, though, might be
an issue; eg, look at the thread starting here:
http://mail.nessus.org/pipermail/nessus/2006-January/msg00037.html
Alternatively, the nmap.nasl plugin (#14259) accepts results in nmap's
grepable output format (-oG). So in theory you can use Nessus with
whatever port scanner you want, you just need to filter the output a bit.
George
--
theall@tenablesecurity.com
------------------------------
Message: 6
Date: Fri, 24 Feb 2006 07:17:49 -0500
From: "George A. Theall" <theall@tenablesecurity.com>
Subject: Re: Nessus fetch - error 2002
To: nessus@list.nessus.org
Message-ID: <43FEF96D.8010602@tenablesecurity.com>
Content-Type: text/plain; charset=us-ascii
On Thu, Feb 23, 2006 at 02:30:34PM +0100, Brandy wrote:
Both when I try to call nessus-fetch --register <myserial>
or nessus-fetch --check
it leads to the error code "An unexpected error occured (code=2002)".
See <http://mail.nessus.org/pipermail/nessus/2006-January/msg00188.html>.
George
--
theall@tenablesecurity.com
------------------------------
Message: 7
Date: Fri, 24 Feb 2006 12:59:08 +0000
From: jfvanmeter@comcast.net
Subject: RE: NeWT Question
To: "Deeds, Chad" <CDeeds@txfb-ins.com>, "Nessus"
<nessus@list.nessus.org>
Message-ID:
<
022420061259.24711.43FF031C000423F20000608722058860149D0A9B0A03020E900006@comcast.net
Content-Type: text/plain; charset="us-ascii"
Thank Chad, I kind of figured that was the answer.
Take Care and Have Fun --John
-------------- Original message --------------
From: "Deeds, Chad" <CDeeds@txfb-ins.com>
You can view a report in xml format, save it, and then import that into a
database i.e. MS Access. From that point, you may want to build some
queries to search through the data. So to answer your question, it is
possible to have NeWT write it's vulnerability reports to a database; just
in an indirect way.
-Chad
From: nessus-bounces@list.nessus.org [mailto:
nessus-bounces@list.nessus.org] On Behalf Of jfvanmeter@comcast.net
Sent: Thursday, February 23, 2006 9:40 AM
To: Nessus
Subject: NeWT Question
Is it possible to have NeWT write it's vulnerability reports to a
database?
Take Care and Have Fun --John
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://mail.nessus.org/pipermail/nessus/attachments/20060224/ce434454/attachment.htm
------------------------------
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
End of Nessus Digest, Vol 28, Issue 21
**************************************
