As this seems to be my only wish for nessus to be perfect (*smirk*),
i've tried to hack my way to use the options Michel suggested in the
nmap_wrapper.c file
on line 375 i added:
opt = get_plugin_preference(desc, PORTRANGE);
if (opt == NULL || strncmp (opt, "User spec", 9) == 0)
{
argv = append_argv (argv, "-p");
sprintf(temp, "T:%s,U:1-1024",get_preference(desc,"port_range") );
argv = append_argv (argv, temp);
/* argv = append_argv (argv, get_preference (desc, "port_range"));
original line*/
}
of course "temp" was defined somewhere up the file.
I compile this and install it, now starting a nessus attack, ps -x shows
nmap happily running the hacked parameter. This line is from
nessus.messages:
[Wed Mar 27 18:16:20 2002][2013] user root : launching nmap_wrapper.nes
against
10.0.0.X [2019]
[Wed Mar 27 18:16:20 2002][2020] Executing on opentty() slave fd 11:
execvp (nma
p, nmap, -n, -P0, -p, T:1-2000,U:1-1024, -sS, -sU, -O, -r, 10.0.0.X).
[Wed Mar 27 18:19:51 2002][2013] nmap_wrapper.nes (process 2019)
finished its jo
b in 210.67 seconds
While it looks fine, nessus wont give me any results. Nor error
diagnostics.
please some wizard help me debug this one =) its all Im asking
Thanx in advance!
Cristobal
--
Cristobal Soto Y.
ICSA.cl - The e-risk security company - http://www.icsa.cl
