Ran the most recent cvs version of nessus (1.1.12) on a FreeBSD 4.4 x86 box and when I start the scan, it instantly completes with an empty report. The host is up, ping-able, and scan-able with nmap. I had been running an ftp downloaded version of 1.1.11 before with the same problem. The log from the nessusd.messages file is as such:
================================= [Tue Jan 8 14:51:23 2002][62754] connection from 64.162.129.254 [Tue Jan 8 14:51:23 2002][62755] Client requested protocol version 12. [Tue Jan 8 14:51:23 2002][62755] successful login of test2 from 64.162.129.254 [Tue Jan 8 14:51:26 2002][62755] Redirecting debugging output to /usr/local/var/nessus/logs/nessusd.dump [Tue Jan 8 14:51:39 2002][62755] user test2 : session will be saved as /usr/local/var/nessus/users/test2/sessions/20020108-145139-index [Tue Jan 8 14:51:39 2002][62755] user test2 starts a new attack. Target(s) : 64.162.129.53, with max_hosts = 20 [Tue Jan 8 14:51:39 2002][62755] user test2 : testing 64.162.129.53 [62756] [Tue Jan 8 14:51:39 2002][62756] user test2 : will launch 10 plugins at the same time against each host [Tue Jan 8 14:51:39 2002][62756] user test2 : launching ping_host.nasl against 64.162.129.53 [62757] [Tue Jan 8 14:51:39 2002][62756] ping_host.nasl (process 62757) finished its job in 0.01 seconds [Tue Jan 8 14:51:39 2002][62756] user test2 : launching nmap_wrapper.nes against 64.162.129.53 [62758] [Tue Jan 8 14:51:39 2002][62756] user test2 : The remote host (64.162.129.53) is dead [Tue Jan 8 14:51:39 2002][62759] Executing on opentty() slave fd 12: execvp (nmap, nmap, -n, -P0, -p, 1-15000, -sT, -O, -r, 64.162.129.53). [Tue Jan 8 14:51:39 2002][62756] Finished testing 64.162.129.53. Time : 0.15 secs [Tue Jan 8 14:51:39 2002][62755] user test2 : test complete [Tue Jan 8 14:51:39 2002][62755] user test2 : Nothing interesting found - deleting the session ================================= I seem to see smackings of this from other messages on the list, only those messages are complaining about nmap never completing. I had been running 1.1.10 before and did not have this problem. My guess is that the error has something to do with the following line from the log: [Tue Jan 8 14:51:39 2002][62759] Executing on opentty() slave fd 12: execvp (nmap, nmap, -n, -P0, -p, 1-15000, -sT, -O, -r, 64.162.129.53). I may just recall incorrectly... but isn't there only supposed to be one "nmap" in the statement in the execvp line (instead of nmap, nmap)? I think that might be the problem, but am looking to see if this is a simple, silly problem before I go back and mess with anything more complicated. Thanks Aaron
