I have a created a .nessusrc file that I include on the commandline using the
-c option while launching Nessus.
Everything I can test in the file seems to work fine except for the plugin_set.
No matter what or how I've formateed it, it seems to be ignored and run EVERY
plugin instead of just the ones marked "yes".
I can change the MAX_HOST scanned as well as the PING_REMOTE hosts settings and
the scans act appropriately.
But regardless of what I do, it appears to run every plugin including the DoS
attacks!
I'm using Nessus 3.0.6 on SUSE SLED 10
Also, I've noticed that when I edit the file with vi, there are ^M at the end
of each line. It doesn't seem to effect the other parts of the config file.
Here's a snippet of my .nessusrc file:
# This file was automagically created by nessus
trusted_ca = /usr/X11R6//com/nessus/CA/cacert.pem
nessusd_host = localhost
hide_toolbar = no
hide_msglog = yes
use_ssl = yes
use_client_cert = no
nessusd_port = 1241
nessusd_user = nessus
paranoia_level = 1
begin(RULES)
end(RULES)
begin(SERVER_INFO)
server_info_nessusd_version = 3.0.6
server_info_os_version = 2.6.13-15-smp
server_info_os = Linux
server_info_thread_manager = fork
server_info_libnessus_version = 3.0.6
server_info_libnasl_version = 3.0.6
end(SERVER_INFO)
begin(PLUGIN_SET)
17451 = yes
29769 = yes
29786 = yes
29761 = yes
29773 = yes
29760 = yes
21684 = no
11069 = no
10564 = no
15613 = no
18506 = no
12200 = no
10163 = no
..
..
..
..
23746 = yes
16054 = yes
19392 = yes
end(PLUGIN_SET)
begin(PLUGINS_PREFS)
SNMP settings[entry]:Community name : = public
Ping the remote host[checkbox]:Test the local Nessus host = yes
Login configurations[radio]:SMB password type : = Password;LM Hash;NTLM Hash
Global variable settings[checkbox]:Do not log in with user accounts not
specified in the policy = no
Kerberos configuration[entry]:Kerberos Realm (SSH only) : =
..
..
..
end(PLUGINS_PREFS)
begin(CLIENTSIDE_USERRULES)
end(CLIENTSIDE_USERRULES)
begin(SERVER_PREFS)
max_hosts = 5
max_checks = 5
port_range = default
cgi_path = /cgi-bin
ping_hosts = yes
auto_enable_dependencies = yes
silent_dependencies = no
host_expansion = ip
reverse_lookup = no
optimize_test = yes
safe_checks = no
use_mac_addr = no
unscanned_closed = no
save_knowledge_base = no
only_test_hosts_whose_kb_we_dont_have = no
only_test_hosts_whose_kb_we_have = no
kb_restore = no
kb_dont_replay_scanners = no
kb_dont_replay_info_gathering = no
kb_dont_replay_attacks = no
kb_dont_replay_denials = no
kb_max_age = 864000
slice_network_addresses = no
plugin_upload_suffixes = .nasl, .nasl3, .inc, .inc3, .nbin, .audit
plugin_upload = yes
plugins_timeout = 120
non_simult_ports = 139, 445
checks_read_timeout = 5
language = english
log_whole_attack = no
throttle_scan = yes
purge_plugin_db = no
auto_update_delay = 24
auto_update = yes
end(SERVER_PREFS)
begin(SCANNER_SET)
10180 = no
10278 = no
10331 = no
10335 = yes
10841 = no
10336 = no
10796 = no
11219 = no
14259 = no
14272 = no
14274 = no
14663 = no
11840 = no
end(SCANNER_SET)
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now.
http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
