將排除的發現項目併入評量檔案中
依預設,利用智慧型發現項目分析 (IFA) 的掃描會將排除的發現項目併入評量檔案 ozasmt 中。這個行為可以使用 include_excluded_findings
檔案中的 scan.ozsettings 內容進行控制。
當掃描產生特別大的評量檔案,其中具有許多排除的發現項目時,操作此內容很有幫助。
若要將排除的發現項目併入評量檔案中,請執行下列動作:
- 在 scan.ozsettings 的 {source-data-directory}/config 區段中,找出內容
include_excluded_findings
並驗證其值是否為"true"
:<Setting name="include_excluded_findings" read_only="false" default_value="true" description="Option to include findings excluded due to IFA into the assessment." type="bool" value="true" display_name="Include IFA excluded findings" hidden="true" />
"True"
是include_excluded_findings
的預設值。
若要從評量檔案中排除已排除的發現項目,請執行下列動作:
- 在 scan.ozsettings 的 {source-data-directory}/config 區段中,找出內容
include_excluded_findings
並將其值編輯為"false"
。
包括排除的發現項目時的範例評量檔案:
<AssessmentStats class_total="0" date="" duration="0" error_status="0" language_type="17" line_total="1919" max_vdensity="1058.363731" max_vkloc="17.196456" method_total="0" total_call_sites="0" total_call_sites_informational="0" total_call_sites_not_vulnerable="0" total_excluded_findings="166" total_files="25" total_findings="33" total_high_finding="19" total_high_high_finding="0" total_high_low_finding="0" total_high_med_finding="19" total_low_finding="2" total_low_high_finding="1" total_low_low_finding="0" total_low_med_finding="1" total_med_finding="12" total_med_high_finding="0" total_med_low_finding="0" total_med_med_finding="12" vdensity="1058.363731" vkloc="17.196456">
<VulnType name="Malicious" total_high_finding="1" total_low_finding="0" total_med_finding="0"/>
<VulnType name="Vulnerability.ErrorHandling.RevealDetails.Message" total_high_finding="0" total_low_finding="0" total_med_finding="1"/>
<VulnType name="Vulnerability.Validation.EncodingRequired" total_high_finding="0" total_low_finding="0" total_med_finding="30"/>
<VulnType name="Vulnerability.Validation.Required" total_high_finding="0" total_low_finding="0" total_med_finding="1"/>
</AssessmentStats>
請注意 total_excluded_findings="166"
。如果 include_excluded_findings
設定為 "false"
,total_excluded_findings
的值將是 "0"
。註: 僅在
use_ifa="true"
時 include_excluded_findings
內容才有效。