I currently have a process set up where I run a scan, when a scan is initiated, an email is sent to the Sysadmin of that subnet, when a scan is complete, another email is sent upon completion. I have also created a dynamic website where scan results are posted to. All SA's throughout the country are able to login and view ONLY their subnet(s). When they log in and view their info, there they obviously have to remediate and report on vulnerabilities and whatever false positives exist within their scan. In doing so, I have built another dynamic website so that they can report their false positives and if they have legitimate vulnerabilities what they have done to remedy that vulnerability and to request a rescan of that IP / Network. With the false positives unfortunately, when they report them and I rescan the next month, obviously those FP's will once again show up. Is there a way that I can mark false positives through some sort of command-line so that subsequent scans will not scan the FP that have been marked FP?
Thanks, Chris Bidwell (CCNA), IT Specialist (Security) _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
