I have asked this question: False positive Apache version in scanner results on Centos I need additional clarification: Do you know if it is possible to configure Nessus to adopt Red Hat backport security updates? I want to prevent false positive reports from Nessus. Example of false positive report:
Apache 2.2 < 2.2.16 Multiple Vulnerabilities
Tried to find the answer here without success: http://www.tenable.com/plugins/67093 http://www.tenable.com/taxonomy/term/612