today I tried to investigate why for one of my servers it’s reported that DH key size is too small. I dug in the plugin directory and found that the NVT is 2016/gb_ssl_dh_weak_keysize_vuln.nasl. So my idea was to execute the script manually using openvas-nasl. I read that the “-D” option should print a description, but it silently quits when executed like this:
openvas-nasl -DX -i /var/lib/openvas/plugins /var/lib/openvas/plugins/2016/gb_ssl_dh_weak_keysize_vuln.nasl
Is it a bug or do I need to run openvas-nasl in a different way?
I compiled the latest release branch code from Git which I downloaded on 2020-05-04 on a CentOS 8.1 system.