[prev in list] [next in list] [prev in thread] [next in thread]
List: openvas-development
Subject: Re: [Openvas-devel] Dropping support for mixed authenticated and unauthenticated NVTs
From: "Jan-Oliver Wagner" <Jan-Oliver.Wagner () greenbone ! net>
Date: 2012-06-08 23:03:39
Message-ID: 201206090103.39788.Jan-Oliver.Wagner () greenbone ! net
[Download RAW message or body]
On Tuesday 05 June 2012 22:19:00 Jan-Oliver Wagner wrote:
> A better approach is to run a separate openvassd in controlled environment
> to work with (partially) unauthenticated NVTs. If needed at all.
> This would also allow to reduce scanner code size / code complexity.
> And would drop hard-to-remind development rules like prefixing KB entries
> with "Secret/" to make them unreadable for unauthenticated NVTs.
I commited the change in r13561 to r13563.
The "Secret" coding is good for something else: have no passwords
written into kb files onto disk. I added this info the the NVT developer
notes.
All the best
Jan
-- =
Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabr=FCck | AG Osnabr=FCc=
k, HR B =
202460
Gesch=E4ftsf=FChrer: Lukas Grunwald, Dr. Jan-Oliver Wagner
_______________________________________________
Openvas-devel mailing list
Openvas-devel@wald.intevation.org
http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic