Re: [Plugins-writers] Nmap.nasl

• Previous message: Herman Young: "RE: [Plugins-writers] Nmap.nasl"
• Maybe in reply to: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Next in thread: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Reply: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Michel Arboi wrote:
> This would be a security risk, as nothing guarantees that nmap
> correctly handles crazy options. Don't forget that the command is run
> as root on the Nessus server. 
> We would have to parse the options and do some sanity checks. I don't
> know which ones...

nmap --interactive could be a bit of a problem :-)

Rich.
-- 
Richard Moore, Principal Software Engineer,
Westpoint Ltd,
Albion Wharf, 19 Albion Street, Manchester, M1 5LN, England
Tel: +44 161 237 1028
Fax: +44 161 237 1031
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers

• Previous message: Herman Young: "RE: [Plugins-writers] Nmap.nasl"
• Maybe in reply to: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Next in thread: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Reply: Michel Arboi: "Re: [Plugins-writers] Nmap.nasl"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Tue Jun 14 2005 - 03:38:29 PDT