Nameservers getting unrelevant findings (e.g. about e-mailsecurity) #1308
Assignees
Labels
bug
Something isn't working
Comments
|
Maybe we should see what services are running on a machine and then decide on what specifics are reasonable. Eg, is we know some host is a Mailhost (because we see mail ports/services) we want to see other security measures as opposed to a machine doing nameserver services or http services. |
|
First step towards solving this is knowing what the context of a host is, we are working on that in #1657. |
TwistMeister
moved this from Incoming features / Need assessment
to Approved features / Need refinement
in KAT
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
Currently, when scanning a hostname it can be the case that a corresponding name server is found. For this name server findings can be generated about e-mail security, while that is not necessarily relevant to the scanned hostname.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
It would be nice if it can be configured what kind of findings should be generated for nameservers. Or maybe a toggle 'generate e-mail findings on nameservers'. It may be the case that this holds for other findings next to e-mail and other objects next to nameservers.
OpenKAT version
1.8
The text was updated successfully, but these errors were encountered: