2008-10-22 16:17:41
By Tim Brown
So today I heard back from the organisers of CCC regarding the proposal for myself and Vlatko to give a presentation on OpenVAS entitled OpenVAS - free your vulnerabilities. From what I'd already heard, they've had a lot of interesting presentations submitted and I wasn't greatly surprised to hear that we'd missed out. It's not the end of the world though, we've been invited to write an article instead. I've also been invited to give a talk tomorrow at London's monthly DC4420 the contents of which will be uploaded shortly after. So what else has been happening?
A short commit digest follows:
- The compendium has reached a stable point, has been translated into German and is also available here
- OpenVAS 2.0.0 beta 1 has been tagged
- OTP/1.0 has been released with numerous code cleanups, NTP is now deprecated
- Lots of new plugins have been added to openvas-plugins, including the entire family of FreeBSD Local Security Checks
- NTP has improved support for plugin OIDs
- Preliminary support for displaying details of signed NASLs in OpenVAS-Client
- Improved fwrite, fread and file_open NASL functions which protect against symlink attacks
- Preliminary support for OVAL plugins in OpenVAS server
- The code clean up continues
So what have I been working on?
- Writing and testing plugins for Solaris Local Security Checks (now in local testing)
- Contributions to a number of the above changes
- Liason with IANA regarding request for an allocated user port for OpenVAS server
- Liason with SPI regarding donations
Thanks to everyone who has committed in the last couple of months, you make motivation easy when defending OpenVAS.
Mood: Nervous
Music: Nothing playing right now
You are unknown, comment