Re: [Plugins-writers] Write a plugin to determine if LanDesk client is NOT listening

Previous message: James Kelly: "[Plugins-writers] Write a plugin to determine if LanDesk client is NOT listening"
In reply to: James Kelly: "[Plugins-writers] Write a plugin to determine if LanDesk client is NOT listening"
Next in thread: Michel Arboi: "Re: [Plugins-writers] Write a plugin to determine if LanDesk client is NOT listening"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

theall@private

On Fri, Oct 06, 2006 at 06:34:58PM -0400, James Kelly wrote:

> I'm trying to write a plugin that scans hosts and only reports back the
> workstations who are not
> listening on tcp 9595 for LanDesk.
...
> port = 9595;
> 
> if(get_port_state(port))
> {
>  soc = open_sock_tcp(port);
>  if(!soc)
> #    security_note(port);
>    print "LanDesk not found";

This merely tests whether port 9595 is open. [The 'print' statement,
btw, is invalid. What you probably want is something like
'security_note(port:port, data:"LanDesk not found");'.] While that might
meet your needs, I'd recommend adding some code that makes sure LanDesk
is really running on that port.

I'm not familiar with the app. How does it operate? Does Nessus
currently identify it? Does it spit out a banner when one connects? Or
can you simulate an initial connection as part of your check?

George
-- 
theall@private
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers