On Tue, Oct 21, 2003 at 07:07:26AM -0400, Michael Scheidell wrote:
> > Perhaps a silly question but a quick search couldn't find the answer. How
> > does nessus handle the scanning of a host running a webserver that
> > provides serveral virtual hosts?
>
> If you select 'reverse dns' or you use the web server NAME, than all
> (most) of the http functions will use http/1.1 calls with the appropriate
> headers.
No, you just need to enter the name of the target host and that's it. If
the DNS<->IP has not been done it (ie: because the server has not been
put in production yet) you can force it in Nessus by giving the host
name between brackets. Ie: "127.0.0.1[www.foo.bar]" will test 127.0.0.1
and all the HTTP requests will have the Host: header set to www.foo.bar.
-- Renaud
