Pen testing questions
Michel Arboi
mikhail at nessus.org
Sat Nov 20 07:46:14 EST 2004
On Fri Nov 19 2004 at 20:59, Rob Notaro wrote:
> I recently pen tested a domain I oversee and came across the following
> holes that were puzzlers.
This happens when the connection is cut for whatever reason.
DoS plugins should check that the host is reachable before launching
their attacks. I'm not sure that all of them do that.
I think that the start_denial() function should be changed: currently it
returns nothing, we should return a flag and change the scripts like this:
if (! start_denial()) exit(0);
(ensuring compatibility with older libnasl needs a slightly more
complex code)
More information about the Nessus
mailing list