Mailing List Archive: smb_func.inc and older Nessus

smb_func.inc and older Nessus

Mar 22, 2005, 5:51 AM

Post #1 of 5 (628 views)

Hi,

This file produces errors like this, with Nessus 2.0.7:

[11791]() Unknown escape sequence \0

I've replaces '\0' with chr(0) and that seems to work here. Perhaps this
could be done to the mainline plugin?

Regards,

Paul

--
Paul Johnston, GSEC
Internet Security Specialist
Westpoint Limited
Albion Wharf, 19 Albion Street,
Manchester, M1 5LN
England
Tel: +44 (0)161 237 1028
Fax: +44 (0)161 237 1031
email: paul@westpoint.ltd.uk
web: www.westpoint.ltd.uk

Re: smb_func.inc and older Nessus [ In reply to ]

mikhail at nessus

Mar 22, 2005, 6:21 AM

Post #2 of 5 (621 views)

Permalink

On Tue Mar 22 2005 at 13:51, Paul Johnston wrote:

> This file produces errors like this, with Nessus 2.0.7:

Upgrade to Nessus 2.2

> I've replaces '\0' with chr(0) and that seems to work here. Perhaps
> this could be done to the mainline plugin?

No. Nessus 2.0 is dead.

Re: smb_func.inc and older Nessus [ In reply to ]

deraison at nessus

Mar 22, 2005, 6:48 AM

Post #3 of 5 (615 views)

Permalink

On Tue, Mar 22, 2005 at 02:21:32PM +0100, Michel Arboi wrote:
> > I've replaces '\0' with chr(0) and that seems to work here. Perhaps
> > this could be done to the mainline plugin?
>
> No. Nessus 2.0 is dead.

Strictly speaking, Nessus 2.0.12 is maintained until the end of this
month. After that, we don't make any garantee on wether new plugins will
be parsed properly or not.

smb_func.inc has been tested with 2.0.12 with no problem.

-- Renaud

Re: smb_func.inc and older Nessus [ In reply to ]

madhat at unspecific

Mar 22, 2005, 2:20 PM

Post #4 of 5 (610 views)

Permalink

On Mar 22, 2005, at 7:48 AM, Renaud Deraison wrote:
> On Tue, Mar 22, 2005 at 02:21:32PM +0100, Michel Arboi wrote:
>>> I've replaces '\0' with chr(0) and that seems to work here. Perhaps
>>> this could be done to the mainline plugin?
>>
>> No. Nessus 2.0 is dead.
>
> Strictly speaking, Nessus 2.0.12 is maintained until the end of this
> month. After that, we don't make any garantee on wether new plugins
> will
> be parsed properly or not.

Is there a list of improvements of 2.2 over 2.0? I know I can go
through the change logs, but if it is already listed it would make my
life easier. Justification for management for upgrading something that
works.

Thanks

Re: smb_func.inc and older Nessus [ In reply to ]

deraison at nessus

Mar 22, 2005, 2:31 PM

Post #5 of 5 (615 views)

Permalink

On Tue, Mar 22, 2005 at 03:20:30PM -0600, MadHat wrote:
> Is there a list of improvements of 2.2 over 2.0? I know I can go
> through the change logs, but if it is already listed it would make my
> life easier. Justification for management for upgrading something that
> works.

In a nutshell :

- Better KB management (KB items are stored in a hash table instead of
a linked list, arbitrary amounts of data can be stored instead of 65k
per item) ;

- Better inter-process communication (Nessus communicates with itself in
a much more robust way. In 2.0.x IPC was CPU intensive and had no
robust delivery mecanism) ;

- Built-in crypto functions which make possible the implementation of
SSH in NASL ;

- Changes in the NASL syntax : more functions and a change in the way
functions handle anonymous arguments have been introduced in 2.2.x.
When we start using this syntax for some scripts, they won't work
with 2.0.x ;

- Support for signed NASL checks which can execute local commands and
are used in lieu of all the .nes plugins ;

- Reduced CPU usage in the scheduler (2.2.4 only) ;

Finally, the killer argument is :

- 2.2.x is maintained, whereas 2.0.x is not. There are subtle bugs
in the 2.x SSL code which may cause incomplete reads and as a result
may produce false negatives, and it won't be fixed in 2.0.x.

-- Renaud