Nessus update to v4.0.1

Tenable Network Security has released version 4.0.1 of the Nessus vulnerability scanner. This point release includes a variety of minor bug fixes as well as support for additional authentication schemes. All customers are encouraged to upgrade to the latest version of the Nessus Server and NessusClient. Below is a summary of some of the fixes and improvements:

Generic

• Fixed memory & register leaks in NASL
• nessus-fetch now supports Basic, Digest, and NTLM proxy authentication schemes
• The timeout for NessusClient TCP socket was too low and has been increased
• The ’nessus’ cmd line tool would sometimes leave temporary files on the filesystem
• Improved performance for reverse DNS lookups
• Knowledge Base files would sometimes not be created for targets where the user specified a hostname
• Pinging a remote host would sometimes fail if the ARP address of the gateway was not in the local cache

Windows

• On some configurations registration would not complete
• Manage users’ would not change the users passwords
• NessusClient would sometimes close a modified report without asking to save first
• The Nessus server now runs on Windows 7. However, Windows 7 is not officially supported at this time. Features such as packet forgery are not yet functioning.

Mac OS X

• In some cases Nessus would not work on Mac OS X 10.4
• NessusClient would display the IP addresses of the target in reverse order on Mac OS X PPC

Linux

• On Linux 64-bit versions, Nessus would generate error messages in dmesg