> I would STRONGLY suggest signing up for bugtraq. Once you do, > figuring out what the heck a new plugin is checking for is a lot > easier, and it also gives you something to watch out for. Other then > that, feel free to post questions here. >
I would suggest you downloaded or viewed only the ICAT vulnerability database [1]. I believe most (all?) of the vulnerabilities tested by Nessus are described there too. Since most Nessus plugins [2] provide CVE [3] references it is easy to relate them to vulnerabilities available in that (free) vulnerability database.
Regards
Javi
[1] http://icat.nist.gov [2] http://cgi.nessus.org/plugins/ [3] http://cve.mitre.org
