I have a problem that I was hoping someone would have some insight on:
I run nessus via command line by cron a few times daily to scan some of our local subnets. I then parse the output with a script I have to accomplish some other tasks.
Basically, right now, I only want to scan for the new Microsoft PnP vulnerbaility. So, in my .nessusrc file, I have only 2 plugins, 19407 and 19408, set to "yes". I also have a bunch of rules set in the rules section.
All goes well for a while. Then I run the "nessus_update_plugins" cron job at midnight, and new plugins are downloaded. Next time I scan again, it finds tons of stuff that I didn't ask it to search for. I look at the .nessusrc file, and there are like 20 plugins at the bottom of the plugin list set to "yes"! I assume these are the newly downloaded plugins, but I don't want them to be set to "yes" automatically. Also, it looks like my RULES were removed.
Anyone else seen this? Is my only option not to update the plugins? Or is there a way around it?
Thanks in advance for any insight, erich _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
