1st, I added a NASL_LEVEL constant, currently at 1000. It will be
incremented when we add new features to NASL.
e.g. to avoid nasty errors if a script needs a new function that was
introduced in "level" 2222, it should start with:
if (NASL_LEVEL < 2222) exit(0);
2nd, I added two new categories:
ACT_INIT is just like ACT_SETTINGS but those scripts are run before
ACT_SCANNER scripts.
ACT_KILL_HOST is for scripts that may crash the machine or the IP
stack. AC_DENIAL should be reserver for scripts that just crash a
service, a userland program, etc.
So the full list of categories is:
ACT_INIT Run before anything else. Should just set KB
items
ACT_SCANNER Port scanners & ping
ACT_SETTINGS Should just set KB items. Run only if the host
is alive.
ACT_GATHER_INFO Just look for information, e.g. a banner.
ACT_ATTACK Try some soft attack.
ACT_MIXED_ATTACK An attack that may have bad consequences,
although its goel is not to crash anything.
ACT_DESTRUCTIVE_ATTACK An attack that really tries to destroy
something.
ACT_DENIAL A denial of service against a userland
program.
ACT_KILL_HOST A denial of service that crashes the machine
or make it unusable in some way (unstable...)
Note that this feature is not compatible with old clients (e.g. enable
all but dangerous plugins will not work)
If you want to add a denial of service and be portable,
you might write:
if (NASL_LEVEL < 1000) script_category(ACT_DENIAL);
else script_category(ACT_KILL_HOST);
--
mailto:arboi@bigfoot.com
GPG Public keys: http://michel.arboi.free.fr/pubkey.txt
http://michel.arboi.free.fr/ http://arboi.da.ru/
FAQNOPI de fr.comp.securite : http://faqnopi.da.ru/
incremented when we add new features to NASL.
e.g. to avoid nasty errors if a script needs a new function that was
introduced in "level" 2222, it should start with:
if (NASL_LEVEL < 2222) exit(0);
2nd, I added two new categories:
ACT_INIT is just like ACT_SETTINGS but those scripts are run before
ACT_SCANNER scripts.
ACT_KILL_HOST is for scripts that may crash the machine or the IP
stack. AC_DENIAL should be reserver for scripts that just crash a
service, a userland program, etc.
So the full list of categories is:
ACT_INIT Run before anything else. Should just set KB
items
ACT_SCANNER Port scanners & ping
ACT_SETTINGS Should just set KB items. Run only if the host
is alive.
ACT_GATHER_INFO Just look for information, e.g. a banner.
ACT_ATTACK Try some soft attack.
ACT_MIXED_ATTACK An attack that may have bad consequences,
although its goel is not to crash anything.
ACT_DESTRUCTIVE_ATTACK An attack that really tries to destroy
something.
ACT_DENIAL A denial of service against a userland
program.
ACT_KILL_HOST A denial of service that crashes the machine
or make it unusable in some way (unstable...)
Note that this feature is not compatible with old clients (e.g. enable
all but dangerous plugins will not work)
If you want to add a denial of service and be portable,
you might write:
if (NASL_LEVEL < 1000) script_category(ACT_DENIAL);
else script_category(ACT_KILL_HOST);
--
mailto:arboi@bigfoot.com
GPG Public keys: http://michel.arboi.free.fr/pubkey.txt
http://michel.arboi.free.fr/ http://arboi.da.ru/
FAQNOPI de fr.comp.securite : http://faqnopi.da.ru/