How would this be different from running just ACT_GATHER_INFO plugins? Dion
-----Original Message----- > From: Randy Bias [mailto:[EMAIL PROTECTED]] > Sent: Tuesday, March 05, 2002 5:17 PM > To: '[EMAIL PROTECTED]' > Subject: Proposal: Nessus as Audit Tool. > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Gentlepeoples, > > > I would like to propose that there be a separate > category of plugins > that is simply "version detection" or "audit plugins." The purpose > is to be able to run nessus in a very lightweight manner (safe > checks, optimized scan, ping hosts, etc.) and run quick audit against > a single network block. The report would mostly provide OS > detection, port, service/application fingerprinting, etc. > > I find myself in the midst of grinding through the plugins and > determining what plugins fit this model. Some times it's not > obvious. Also, while I am interested in the vulnerabilities for > given versions, I would first prefer to see a nice sensible list of > ports/applications/version#s that I can scan through quickly. > > Does anyone else have a need/desire for this? Does it > make sense > for Nessus? > > > > > Cheers, > > > > - --Randy > > > -----BEGIN PGP SIGNATURE----- > Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> > > iQA/AwUBPIVEGiGJH83OL4I4EQJ5hQCgol1kooXxL11Clivz9jxMwcTKfdUAmwb/ > bQ5FFKTPyA0Zbc10sPdC48oa > =rR6+ > -----END PGP SIGNATURE----- > > >
