[Plugins-writers] Modification of Plugin 11033 to Supress Some Output

Previous message: Jon Passki: "[Plugins-writers] Plugin 10807 (Jakarta Tomcat 3.1 Path Disclosure) False Positive"
Next in thread: Michel Arboi: "Re: [Plugins-writers] Modification of Plugin 11033 to Supress Some Output"
Reply: Michel Arboi: "Re: [Plugins-writers] Modification of Plugin 11033 to Supress Some Output"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

cykyc@private

Hello All,

<plugin 11033>

if (noauth) 
notice += 'This NNTP server allows unauthenticated connections\n';

if (!noauth) {
 notice += 'This NNTP server does not allows unauthenticated
connections\n';
 if (! authenticated)
  notice += 'As no good username/password was provided, we cannot
send our test messages\n';
}

if (! posting) {
 notice += 'This NNTP server does not allow posting\n';
}

</plugin 11033>

I would like to remove the second, third, and forth conditional
statements above in Plugin 11033 (Misc information on News server)
since they are redundant and report information that isn't a
vulnerability.  I think it can be assumed that if the test occurs
but there are no results, then there is no vulnerability.  If
agreed, could this be committed?  Also, is it appropriate to email
change requests to the list, or is there a GNAT, Bugzilla, etc.,
system in place?

Jon

__________________________________ 
Do you Yahoo!? 
All your favorites on one personal page – Try My Yahoo!
http://my.yahoo.com 
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers