Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Nessus: devel

Syntax of user access rules?

  

 
Nessus devel RSS feed   Index | Next | Previous | View Threaded


jan at intevation

Nov 4, 2004, 4:58 AM

Post #1 of 2 (831 views)
Permalink
Syntax of user access rules?
Hi,

I am searching for sepecification of the syntax for
the user access rules. All I found so far is:

fprintf(f, "#\n# Nessus rules\n#\n\n");
fprintf(f, "# Syntax : accept|reject address/netmask\n");
fprintf(f, "\n# Accept to test anything : \n");
fprintf(f, "default accept\n");

in nessusd/rules.c


From the code I learned that "deny" is a allowed equivalent
to "reject".
And I learned that "default something-else-then-accept"
means some sort of deny.

I guess there is only allowed a single "default" rule?

Furthermore, the GTK client does not allow to remove a rule
in the list. I guess that is a bug?

Any help really appreciated!


So far my idea is to make the GUI for entering rules safe
against wrong syntax (and explain the oppotunties at the same time).
But I need the syntax specification for that.

Best

Jan
--
Jan-Oliver Wagner http://intevation.de/~jan/

Intevation GmbH http://intevation.de/
FreeGIS http://freegis.org/


deraison at nessus

Nov 4, 2004, 7:45 AM

Post #2 of 2 (787 views)
Permalink
Re: Syntax of user access rules? [In reply to]
On Thu, Nov 04, 2004 at 12:58:05PM +0100, Jan-Oliver Wagner wrote:
> Hi,
>
> I am searching for sepecification of the syntax for
> the user access rules. All I found so far is:
>
> fprintf(f, "#\n# Nessus rules\n#\n\n");
> fprintf(f, "# Syntax : accept|reject address/netmask\n");
> fprintf(f, "\n# Accept to test anything : \n");
> fprintf(f, "default accept\n");
>
> in nessusd/rules.c


action = accept | reject | deny
target = ip | ip/cidr | "client_ip"
rule = <action> <target> | "default" <action>


It works like a firewall : you define a set of hosts you want/don't want
to scan, and you finish your statement with a default policy.

The order of the policies is :

nessusd.rules
$prefix/var/nessus/users/<login>/auth/rules

And then the user can restrict his scope thru the GTK client.
Once a scope has been defined in nessusd.rules, it can only be reduced
furthermore, not be expanded.



-- Renaud

Nessus devel RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.