Hi,
We are happy to announce the availability of the following products :
- Nessus 3.0.1
- NessusClient 1.0.0 RC3
- mIDA 1.0.0
Nessus 3.0.1
-------------
Nessus 3.0.1 contains several improvements and bug fixes over Nessus
3.0.0. The full change log is as follows :
- Improvements :
- Lighter resources consumption of the master processes, which in
turn improve scalability (one has to account for ~ 6 megabytes of RAM
per host tested in parallel)
- Reduce the CPU usage of nessusd when the only running plugin is
executing a local command
- Improved the timing of synscan.nes which could result in very
long (nearly infinite in time) port scans
- Slightly faster (~ 20%) initial processing of the plugins
- Bug fixes :
- When nessusd updates itself, the process now restarts properly
- Fixed the error message "Warning this scanner seems to be using
the plugin feed of another host" which would
sometimes be displayed when the nessusd host changes of IP addresses
- Fixed a NULL pointer dereferencement which may happen in some
cases when dealing with shared sockets
- Other :
- Removed bogus warning messages occuring when max_checks is set to
a very high value (which is not a good idea in the first place --
max_checks should be set to 4 most of the time)
- KB files of hosts which are dead are not saved on disk (as they
are empty)
- Re-introduced HTML export, due to popular demand
- The RPMs have stronger dependencies set
- The SuSE 9.3 build is now linked to the default libdb 4.3
Nessus 3.0.1 can be downloaded from <http://www.nessus.org/download/>
NessusClient 1.0.0.RC3
-----------------------
A new release candidate of NessusClient (RC3) has been released. It
fixes a bug introduced in RC2 which caused it to crash when using the
'-p' command line switch. RC2 itself, which has not been announced on
the list, contained the following fixes :
- Fix for Bug #1346: Results copied to wrong task
- Fix for Bug #1357: Wrong focus for some dialogs
- Made creation of html-version of manual default
- Some more renaming from "nessus" to "NessusClient" (man pages)
- plug a memory leak of 1MB for each connection
- Make NessusClient startup much faster
- Various small fixes/typos
NessusClient 1.0.0.RC3 can be downloaded from <http://www.nessus.org/
download/>
mIDA 1.0.0 for IDA 4.9
-----------------------
At Tenable, we have written several in-house tools which make it
easier for us to analyze patches and produce vulnerability checks.
One of these tools is an IDA Pro plugin called "mIDA".
mIDA is an IDA plugin which extracts RPC interfaces and recreates the
associated IDL file. It supports inline, interpreted and fully
interpreted server stubs.
If you are a security researcher and often toy with RPC
vulnerabilities and tools like muddle or unmidl, you definitely want
to have a look at this plugin.
mIDA 1.0.0 can be downloaded from
<http://cgi.tenablesecurity.com/tenable/mida.php>
(Note that mIDA only works with IDA 4.9).
Thanks,
-- Renaud
_______________________________________________
Nessus-announce mailing list
Nessus-announce@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus-announce
We are happy to announce the availability of the following products :
- Nessus 3.0.1
- NessusClient 1.0.0 RC3
- mIDA 1.0.0
Nessus 3.0.1
-------------
Nessus 3.0.1 contains several improvements and bug fixes over Nessus
3.0.0. The full change log is as follows :
- Improvements :
- Lighter resources consumption of the master processes, which in
turn improve scalability (one has to account for ~ 6 megabytes of RAM
per host tested in parallel)
- Reduce the CPU usage of nessusd when the only running plugin is
executing a local command
- Improved the timing of synscan.nes which could result in very
long (nearly infinite in time) port scans
- Slightly faster (~ 20%) initial processing of the plugins
- Bug fixes :
- When nessusd updates itself, the process now restarts properly
- Fixed the error message "Warning this scanner seems to be using
the plugin feed of another host" which would
sometimes be displayed when the nessusd host changes of IP addresses
- Fixed a NULL pointer dereferencement which may happen in some
cases when dealing with shared sockets
- Other :
- Removed bogus warning messages occuring when max_checks is set to
a very high value (which is not a good idea in the first place --
max_checks should be set to 4 most of the time)
- KB files of hosts which are dead are not saved on disk (as they
are empty)
- Re-introduced HTML export, due to popular demand
- The RPMs have stronger dependencies set
- The SuSE 9.3 build is now linked to the default libdb 4.3
Nessus 3.0.1 can be downloaded from <http://www.nessus.org/download/>
NessusClient 1.0.0.RC3
-----------------------
A new release candidate of NessusClient (RC3) has been released. It
fixes a bug introduced in RC2 which caused it to crash when using the
'-p' command line switch. RC2 itself, which has not been announced on
the list, contained the following fixes :
- Fix for Bug #1346: Results copied to wrong task
- Fix for Bug #1357: Wrong focus for some dialogs
- Made creation of html-version of manual default
- Some more renaming from "nessus" to "NessusClient" (man pages)
- plug a memory leak of 1MB for each connection
- Make NessusClient startup much faster
- Various small fixes/typos
NessusClient 1.0.0.RC3 can be downloaded from <http://www.nessus.org/
download/>
mIDA 1.0.0 for IDA 4.9
-----------------------
At Tenable, we have written several in-house tools which make it
easier for us to analyze patches and produce vulnerability checks.
One of these tools is an IDA Pro plugin called "mIDA".
mIDA is an IDA plugin which extracts RPC interfaces and recreates the
associated IDL file. It supports inline, interpreted and fully
interpreted server stubs.
If you are a security researcher and often toy with RPC
vulnerabilities and tools like muddle or unmidl, you definitely want
to have a look at this plugin.
mIDA 1.0.0 can be downloaded from
<http://cgi.tenablesecurity.com/tenable/mida.php>
(Note that mIDA only works with IDA 4.9).
Thanks,
-- Renaud
_______________________________________________
Nessus-announce mailing list
Nessus-announce@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus-announce