On Mon, Sep 12, 2005 at 03:53:51PM -0500, Sexton, Kyle wrote: > I know that Nessus currently supports RedHat ES when doing local > checks. I modified the ssh_get_info.nasl file so that will match CentOS > in the /etc/redhat-release file, is that the only modification I will > need to make?
Not having actually used CentOS, I don't know for sure, but I suspect that's basically it. > I have verified that Nessus enables the local checks, but > I’m not returning any failed RPM updates or things of that nature. It > may be that the machines I’m testing are just currently up to date, but > I’d like a way to know for sure. At a minimum, you should get a security note telling you local security checks are being run; eg, "Local security checks have been enabled for this host". In addition, the knowledge base should hold the package information in the key "Host/RedHat/rpm-list" in the case of CentOS. What may be tripping you up is the fact that ssh_get_info.nasl is signed (eg, the comment line starting with "TRUSTED " at the top of the script). By default, nessusd won't run any external programs from a plugin unless it's been signed properly with nessus.org's private key. There is a way around this, which you should be able to find by searching the mailing list archives, if you don't mind the possibility of shooting yourself in the foot. A better alternative is to send me / post the changes you've made so that they can be incorporated into the plugin and other CentOS users can take advantage of local checks. George -- [EMAIL PROTECTED] _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
