Mailing List Archive: Plugin Order?

Plugin Order?

May 12, 2006, 12:02 PM

Post #1 of 4 (2833 views)

Hi all,

I'm curious to how Nessus picks its plugin order. I've got some custom plugins set in my .nessusrc file, and for some reason, it doesn't want to go in order listed in the file.

The first plugin it picks is a PHP plugin, and it runs that even if a host is dead. Obviously, it shouldn't do that on a dead host because the required service WWW is not enabled.

Is this is a bug or is this expected behaviour?

Cheers.

--
It is proverbial that from (\`--/') _ _______ .-r-.
a hungry tiger and an >.~.\ `` ` `,`,`. ,'_'~`.
affectionate woman there is (v_," ; `,-\ ; : ; \/,-~) \
no escape. -Ernest Bramah `--'_..),-/ ' ' '_.>-' )`.`.__.')
hobbes at vaxer dot net ((,((,__..'~~~~~~((,__..' `-..-'fL
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers

Re: Plugin Order? [ In reply to ]

josh at ramat

May 13, 2006, 11:08 AM

Post #2 of 4 (2732 views)

Permalink

On Fri, 12 May 2006, HObbES wrote:

> Hi all,
>
> I'm curious to how Nessus picks its plugin order. I've got some custom plugins set in my .nessusrc file, and for some reason, it doesn't want to go in order listed in the file.

To make sure that your custom plugins run in a certain order you should utilize
the script_dependencies function.

>
> The first plugin it picks is a PHP plugin, and it runs that even if a host is dead. Obviously, it shouldn't do that on a dead host because the required service WWW is not enabled.

Try enabling the 'optimize_test' setting in your .nessusrc file. Which port
scanner/s are you using?

--
- Josh
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers

Re: Plugin Order? [ In reply to ]

theall at tenablesecurity

May 15, 2006, 12:45 PM

Post #3 of 4 (2717 views)

Permalink

On Fri, May 12, 2006 at 12:02:26PM -0700, HObbES wrote:

> The first plugin it picks is a PHP plugin, and it runs that even if a
> host is dead. Obviously, it shouldn't do that on a dead host because
> the required service WWW is not enabled.

You probably want to make sure that the port is open; eg,

port = get_http_port(default:80);
if (!get_port_state(port)) exit(0);

You probably also want to add a dependency on http_version.nasl in this
case.

George
--
theall@tenablesecurity.com
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers

Re: Plugin Order? [ In reply to ]

hobbes at maple

May 17, 2006, 2:49 PM

Post #4 of 4 (2717 views)

Permalink

This one time, George A. Theall wrote:
> On Fri, May 12, 2006 at 12:02:26PM -0700, HObbES wrote:
> > The first plugin it picks is a PHP plugin, and it runs that even if a
> > host is dead. Obviously, it shouldn't do that on a dead host because
> > the required service WWW is not enabled.
> You probably want to make sure that the port is open; eg,
>
> port = get_http_port(default:80);
> if (!get_port_state(port)) exit(0);
>
> You probably also want to add a dependency on http_version.nasl in this
> case.

Thanks, but that wasn't it. It turns out you need to have what ACT_* defined; otherwise, it defaults to a scanner.
--
It is proverbial that from (\`--/') _ _______ .-r-.
a hungry tiger and an >.~.\ `` ` `,`,`. ,'_'~`.
affectionate woman there is (v_," ; `,-\ ; : ; \/,-~) \
no escape. -Ernest Bramah `--'_..),-/ ' ' '_.>-' )`.`.__.')
hobbes at vaxer dot net ((,((,__..'~~~~~~((,__..' `-..-'fL
_______________________________________________
Plugins-writers mailing list
Plugins-writers@list.nessus.org
http://mail.nessus.org/mailman/listinfo/plugins-writers