Noah Roberts wrote: >I am using this system in a NetReg environment where users will not be >able to register if McAfee or Norton are not installed, running, and up >to date. So far, my tests have all "succeeded" when the registry or >running services information was inaccessable! Not exactly helpful >that. > > > I was thinking along the same lines - but was coming to a different conclusion. What about having the plugins report the *positive* status as well as the negative. e.g. "the XXXX Antivirus package is installed but is not running" could be augmented by the opposite "the XXX Antivirus package is installed, up-to-date and is running". To some extent, there are so many ways and reasons why something fails, it might be better to report when it is all working instead. It's like firewall rules. Defining everything that is good and dropping everything else is A LOT easier than defining what is bad... -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 _______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2.1.3 : Tue Dec 14 2004 - 12:36:56 PST