On Thu, Jan 22, 2004 at 12:25:56PM +0100, Marc Croteau wrote:
> Nessus is a *scanner*. I use it regularly when performing vulnerability
> assessment for various customers. If it now starts to modify things as
> it runs
It does not /start to modify things/, it just disables _a_ virus and let
you know that you should have a look at the remote host. The plugin is
also marked as being DESTRUCTIVE, ie: it will only run if safe checks are
disabled. Other plugins, when run in non safe checks, will have the side
effect of disabling other services, like nfsd or more, which might be
critical for a production server.
It's not like the command is dangerous either - ie: we're not sending a
find -name *.pif -exec rm {} \; to the remote host, we just tell the
virus to stop spreading.
What is your real concern ? Do you think that there are production servers
out there which won't work properly without having beagle running ?
-- Renaud
_______________________________________________
Nessus mailing list
[EMAIL PROTECTED]
http://mail.nessus.org/mailman/listinfo/nessus
