The "info" Field
The optional info field can be used to label each audit field with one or more external references. For example, this field
will be used to place references from NIST CCE tags as well as CIS specific audit requirements. These external references are
printed out in the final audit performed by Nessus and will be displayed in the Nessus report or through the Tenable Security Center
user interface.
Following is an example password audit policy that has been augmented to list references to a fictitious corporate policy:
<custom_item>
type: PASSWORD_POLICY
description: "Password History: 24 passwords remembered"
value_type: POLICY_DWORD
value_data: [22..MAX] || 20
password_policy: ENFORCE_PASSWORD_HISTORY
info: "Corporate Policy 102-A"
</custom_item>
If multiple policy references are required for a single audit, the string specified by the info keyword can make use of regular line breaks, or the \n separator to specify multiple strings. For example, consider the following audit with regular line breaks:
<custom_item>
type : CHECK_ACCOUNT
description : "Accounts:Rename Administrator account"
value_type : POLICY_TEXT
value_data : "Administrator"
account_type : ADMINISTRATOR_ACCOUNT
check_type : CHECK_NOT_EQUAL
info : "CCE-60
Tenable Best Practices Policy 1005-a
This items tests for the presence of the administrator account"
</custom_item>
Or using \n separator:
<custom_item>
type : CHECK_ACCOUNT
description : "Accounts:Rename Administrator account"
value_type : POLICY_TEXT
value_data : "Administrator"
account_type : ADMINISTRATOR_ACCOUNT
check_type : CHECK_NOT_EQUAL
info : "CCE-60\nTenable Best Practices Policy 1005-a\nThis items tests for the presence of the administrator account"
</custom_item>