Others have addressed the identification piece. I also read in your original post that you want to run all Windows plugins, but the plugin "families" miss some that you want.
I assume you have considered selecting the plugins individually? either: - selecting the individual plugins from the GUI (within each family) - editing the .nessusrc to enable individual ones Not as easy as it might be, but it should do what you want. Jim > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] Behalf Of Jonathan C. Detert > Sent: Thursday, April 01, 2004 11:31 PM > To: [EMAIL PROTECTED] > Subject: how to make nessus only consider hosts it believes to be > running aMs.Win* o.s. ? > > > Hello All, > > I'm scanning my employer's network with the hopes of > limitting viral outbreaks > by identifying vulnerable Ms.Windows machines, and denying them dhcp > service. > > My problem is that my employer's network also has *BSD, > MacOS, and Linux > machines, but I don't want to deny those machines dhcp > service, even if > they have vulnerabilities, because I'm not worried about them > spreading > virii. > > If I limit the plugins used in my scans to the 'Windows' > family, then I > miss some plugins that I would like to use against Ms.Windows > machines, > such as 11412, which is titled 'IIS : WebDAV Overflow (MS03-007)', and > which belongs to the 'Gain root remotely' family. But, if I > enable the > 'Gain root remotely' family, then I also enable plugins that would be > applicable to those o.s.'s that I don't want to scan. > > So, is there a way to instruct nessus to only 'attack' hosts which it > believes are 'Ms.Win*' hosts? Or at least, to not 'attack' > hosts which > it believes are not Ms.Win* hosts? > > Thanks > -- > Happy Landings, > > Jon Detert > IT Systems Administrator, Milwaukee School of Engineering > 1025 N. Broadway, Milwaukee, Wisconsin 53202 > _______________________________________________ > Nessus mailing list > [EMAIL PROTECTED] > http://mail.nessus.org/mailman/listinfo/nessus > _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
