I have a few plugins that are not raising alerts and I'm baffled why. I have tested using the following:
1. Verified the plugins are launching and finishing via openvassd.messages file with log_whole_attack turned on. 2. Manually inserted "display" log messages in the plugin and verified it actually makes it to the security_message statement. For testing, I'm running my scan config against the single vulnerable port (3306/tcp) on a single target. The port is running a vulnerable version (5.0.51a) of MySQL. Everything is mostly default (no overrides, etc). Note, 1.3.6.1.4.1.25623.1.0.800842 and 1.3.6.1.4.1.25623.1.0.100436 are two of the NVTs that make it to the security_message statement but do not show any alerts in the report. Any ideas? \\korodev
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
