Re: [Plugins-writers] non-authenticated script

• Previous message: Andrea Vitali: "[Plugins-writers] non-authenticated script"
• In reply to: Andrea Vitali: "[Plugins-writers] non-authenticated script"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Thu Mar 17 2005 at 10:28, Andrea Vitali wrote:

> "A non-authenticated script attempted to use an authenticated function
> returning NULL"

Calling external functions is dangerous. So only signed scripts can do
this.
nasl -X overrides the signature verification.

Another way is to set "nasl_no_signature_check = yes" in nessusd.conf
But this is dangerous, because if somebody could install a script that
tries to delete your system, steal your passwords, whatever...
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers

• Previous message: Andrea Vitali: "[Plugins-writers] non-authenticated script"
• In reply to: Andrea Vitali: "[Plugins-writers] non-authenticated script"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Thu Mar 17 2005 - 02:13:55 PST