I was going to say the same thing Joseph did, but didn't want to deal with the flames for appearing to support Microsoft on something ;).
Without a competent and complete analysis to accompany the Nessus output, it doesn't tell you much of anything useful. I'm sure that if this got on Slashdot or a Windows site, it would start all sorts of FUD from both camps. /jgw > Greetings, > > That guy's Nessus scan for georgewbush.com has obviously fallen into a > honeypot/IDS tarpit. The Nessus scan returned results from well-known > (and OLD) IIS, OmniHTTPd, and Cobalt Linux vulnerabilities, as well as > obvious CGI vulns. Disregarding the fact that IIS doesn't run on Cobalt > Web Appliances (Linux), there's no way that any administrator would > allow those out-of-date, unpatched, scripts to be run on a modern machine. > > Nessus is indeed a pretty cool tool, but only if you know how to > interpret its output. > > Never place too much faith in anything you see, read or hear that you > cannot personally reproduce. _______________________________________________ EUGLUG mailing list [EMAIL PROTECTED] http://www.euglug.org/mailman/listinfo/euglug
