[Openvas-discuss] Ideas and wishes for future improvements of OpenVAS
Jan-Oliver Wagner
jan-oliver.wagner at intevation.de
Wed May 16 22:27:13 CEST 2007
On Wednesday 16 May 2007 21:00, Kenneth Ng wrote:
> - Plugin severity override: some places value some vulnerabilities
> more than others. For example: some places rank anonymous CIFS
> connections as vital to their business. Others say its a big risk.
> Having a front end to override the degree instead of patching the
> plugin would be nice.
perhaps this is related to the false-positive marking discussion I
remember to have read somewhere.
Anyway, a good point.
> - An option to say: "do not add new plugins to the .nessusrc file".
> Or maybe, add all new ones as "no". Sometimes I want to run a given
> set of plugins periodically. I don't want all new ones to also get
> run.
I remember to have read this wish before. Yes, I stumbled across this
already myself.
> - Ability to do a "diff" between two scan results.
A long-standing wish indeed. IMHO this should have high priority.
It is a client-side feature though. So maybe to implement in NessusClient.
> - database option for the results.
IIRC there even is/was a branch in Nessus CVS with this feature?
Perhaps worth investigating this.
Best
Jan
--
Dr. Jan-Oliver Wagner Intevation GmbH
Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
More information about the Openvas-discuss
mailing list