I'm happy to announce the availability of Nessus 2.2.4.
1. Nessus 2.2.4 contains important fixes
----------------------------------------
- Fixed a bug in nessusd when killing slow plugins, which may result
in a hang of the scan
- Fixed a bug in find_services.nes which would prevent it from exiting
properly when receiving a SIGTERM message
- Fixed a bug in libnessus/network.c which may result in incompletes
SSL reads
- Fixed proxy support in nessus-fetch
Upgrading is strongly recommended, especially if find_service.nes hanged
during your scans.
2. New SMB API
--------------
Nessus 2.2.4 also contains a brand new SMB API, entirely rewritten from
scratch. This new SMB API (written in NASL) behaves much better against
remote Windows hosts. In particular, it supports SMB signing which allows
Nessus to log into hosts for which SMB signing is mandatory
(ie: Windows 2003 Server configured as a PDC). It also supports Kerberos
authentication for improved security.
For the SMB experts out there, the new API supports the following protocols:
- LANMAN2.1
- NT LM 0.12
It supports the following authentication methods :
- Clear text
- LM
- NTLM
- LMv2
- NTLMSSP (through SPNEGO)
- Kerberos (through SPNEGO)
SMB signing is supported for every authentication method (except clear text
of course).
3. Availability
---------------
Nessus 2.2.4 is available at http://www.nessus.org/download/
4. Bugs
-------
If you find any bug, please report it at http://bugs.nessus.org/
1. Nessus 2.2.4 contains important fixes
----------------------------------------
- Fixed a bug in nessusd when killing slow plugins, which may result
in a hang of the scan
- Fixed a bug in find_services.nes which would prevent it from exiting
properly when receiving a SIGTERM message
- Fixed a bug in libnessus/network.c which may result in incompletes
SSL reads
- Fixed proxy support in nessus-fetch
Upgrading is strongly recommended, especially if find_service.nes hanged
during your scans.
2. New SMB API
--------------
Nessus 2.2.4 also contains a brand new SMB API, entirely rewritten from
scratch. This new SMB API (written in NASL) behaves much better against
remote Windows hosts. In particular, it supports SMB signing which allows
Nessus to log into hosts for which SMB signing is mandatory
(ie: Windows 2003 Server configured as a PDC). It also supports Kerberos
authentication for improved security.
For the SMB experts out there, the new API supports the following protocols:
- LANMAN2.1
- NT LM 0.12
It supports the following authentication methods :
- Clear text
- LM
- NTLM
- LMv2
- NTLMSSP (through SPNEGO)
- Kerberos (through SPNEGO)
SMB signing is supported for every authentication method (except clear text
of course).
3. Availability
---------------
Nessus 2.2.4 is available at http://www.nessus.org/download/
4. Bugs
-------
If you find any bug, please report it at http://bugs.nessus.org/