Nessus News (2.2.1 / Plugin Feed / New WebSite)
Renaud Deraison
deraison at nessus.org
Tue Dec 7 21:07:43 EST 2004
On Tue, Dec 07, 2004 at 08:40:34PM -0500, Kevin Davis wrote:
> I have a couple of questions. Presumably the GPL plugin development would
> be independent of the Tenable development. It would seem that it would
> often be the case when some really important critical vulnerability comes
> out that both branches (since they are independent) immediately develops a
> plugin for it. So what happens then?
In the past, plugins "colliding" have occured very rarely. If we have a
Tenable plugin in CVS while someone else develops a GPL plugin, the GPL
plugin won't make it. There won't be redundant plugins.
> I'm also curious about what kind of quality control there is on the
> plugins. Does anyone do any QC on them (Tenable or GPL) before they are
> officially available?
Yes. Every submitted plugin is QA'ed here.
> If one writes a plugin that feels should be
> included, what is the process of submitting it and then how is it
> determined to be officially added to CVS?
Same as before - send it to deraison at nessus.org and
plugins-writers at list.nessus.org. Most plugins which make sense are
included, those which are not are the ones which will make tons of false
positives/false negatives.
> P.S. It seems that your certificate for free feed registration has a
> problem with it.
What error are you getting ?
-- Renaud
More information about the Nessus
mailing list