nessus(1)
NAME
nessus-check-signature - A simple utility to check (or generate) the
signature of plugins retrieved from www.nessus.org
SYNOPSIS
nessus-check-signature [-S] filename [signaturefile]
DESCRIPTION
nessus-check-signature is a simple utility used by nessus-update-plugins to check the signatures of the Nessus plugins downloaded from www.nessus.org. When executed and provided both an archive and a signaturefile it will verify if the file matches the signature and if the signature matches the nessus_org.pem certificate.
It can also generate the signatures for the plugins distributed by
www.nessus.org but you will, obviously, need the private certificate
file to do so. You can, however, customise the code to use an alternate
certificate file and generate plugins distributions files for third
party servers.
OPTIONS
- -S Sign the archive instead of checking the signature. nessus
- check-signature will check for the private certificate key nessus_org.priv.pem and will generate a .sig file with the file signature.
EXAMPLE
To check the signature for all the plugins downloaded from the Nessus
servers use:
nessus-check-signature all-2.0.tar.gz all-2.0.sig
EXIT VALUES
nessus-check-signature will return with a 0 value if the signature
matches and will return with an error value (1) if the signature does
not match or if any other error is found.
SEE ALSO
nessus-update-plugins(1),nessus-fetch(1)
MORE INFORMATION ABOUT THE NESSUS PROJECT
- The canonical place where you will find more information about the Nessus project is :
- http://www.nessus.org/ <>
AUTHORS
nessus-check-signature is (C) 2004 Tenable Network Security
- This manpage was written by Javier Fernandez-Sanguino for the Debian
distribution, and is distributed under the GPL.