Virus.Org IT Security News and Information Portal. We offer the latest IT security news, updates, product reviews, books, and articles for all you IT security professionals out there. Enter and get the best IT security information on the Internet.

 
. Welcome to the Virus.Org Mailing List Archive  
.
.


[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]


[Nessus-announce] Nessus 3.0.1 / NessusClient 1.0.0 RC3 / mIDA 1.0.0 released !
.

  • To: Nessus List <[EMAIL PROTECTED]>, [EMAIL PROTECTED]
  • Subject: [Nessus-announce] Nessus 3.0.1 / NessusClient 1.0.0 RC3 / mIDA 1.0.0 released !
  • From: Renaud Deraison <[EMAIL PROTECTED]>
  • Date: Tue, 10 Jan 2006 09:04:47 +0100
  • Cc:
  • Domainkeys-status: no signature
  • Sender: [EMAIL PROTECTED]
.
 

Hi,

We are happy to announce the availability of the following products :


- Nessus 3.0.1
- NessusClient 1.0.0 RC3
- mIDA 1.0.0


Nessus 3.0.1
-------------
Nessus 3.0.1 contains several improvements and bug fixes over Nessus 3.0.0. The full change log is as follows : 

- Improvements :
- Lighter resources consumption of the master processes, which in turn improve scalability (one has to account for ~ 6 megabytes of RAM per host tested in parallel) - Reduce the CPU usage of nessusd when the only running plugin is executing a local command - Improved the timing of synscan.nes which could result in very long (nearly infinite in time) port scans 
 - Slightly faster (~ 20%) initial processing of the plugins


- Bug fixes :

 - When nessusd updates itself, the process now restarts properly
- Fixed the error message "Warning this scanner seems to be using the plugin feed of another host" which would 
sometimes be displayed when the nessusd host changes of IP addresses
- Fixed a NULL pointer dereferencement which may happen in some cases when dealing with shared sockets 


- Other :
- Removed bogus warning messages occuring when max_checks is set to a very high value (which is not a good idea in the first place -- max_checks should be set to 4 most of the time) - KB files of hosts which are dead are not saved on disk (as they are empty) 
 - Re-introduced HTML export, due to popular demand
 - The RPMs have stronger dependencies set
 - The SuSE 9.3 build is now linked to the default libdb 4.3


Nessus 3.0.1 can be downloaded from <http://www.nessus.org/download/>


NessusClient 1.0.0.RC3
-----------------------
A new release candidate of NessusClient (RC3) has been released. It fixes a bug introduced in RC2 which caused it to crash when using the '-p' command line switch. RC2 itself, which has not been announced on the list, contained the following fixes : 

- Fix for Bug #1346: Results copied to wrong task
- Fix for Bug #1357: Wrong focus for some dialogs
- Made creation of html-version of manual default
- Some more renaming from "nessus" to "NessusClient" (man pages)
- plug a memory leak of 1MB for each connection
- Make NessusClient startup much faster
- Various small fixes/typos
NessusClient 1.0.0.RC3 can be downloaded from <http://www.nessus.org/ download/> 


mIDA 1.0.0 for IDA 4.9
-----------------------
At Tenable, we have written several in-house tools which make it easier for us to analyze patches and produce vulnerability checks. One of these tools is an IDA Pro plugin called "mIDA".
mIDA is an IDA plugin which extracts RPC interfaces and recreates the associated IDL file. It supports inline, interpreted and fully interpreted server stubs.
If you are a security researcher and often toy with RPC vulnerabilities and tools like muddle or unmidl, you definitely want to have a look at this plugin. 


mIDA 1.0.0 can be downloaded from
<http://cgi.tenablesecurity.com/tenable/mida.php>

(Note that mIDA only works with IDA 4.9).



Thanks,



					-- Renaud
_______________________________________________
Nessus-announce mailing list
[EMAIL PROTECTED]
http://mail.nessus.org/mailman/listinfo/nessus-announce
 
.
.
 
Copyright (c) Virus.Org 1997-2006.
All Trademarks Acknowledged.
Please view our Terms and Conditions and our Privacy Policy.