Is there a problem with the way ssh_proto_version.nasl checks which versions of the SSH protocol are supported? For example, using it to check an OpenSSH server configured to use SSHv2.0 only, it reports the server supports both 1.99 and 2.0.
If I connect manually to port 22 on my server and send the string "SSH-1.99-NessusSSH_1.0" the key exchange appears to start, which is how the NASL script is doing the check. However, the config file specifies the server should support only version 2 and the daemon has been restarted since making that change. Also, I've double-checked whether the server does in fact support version 1 by both examining the version string returned (SSH-2.0-OpenSSH_3.4p1) and trying to connect while restricting the protocol to version 1. George -- [EMAIL PROTECTED] - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
