Try using the "sqlping.exe" utility that it was based on, see if you get the same results. If you can confirm that the plugin is actually missing the responses (use tcpdump to sniff the reponses, etc), try adding a timeout:20 parameter to the recv() call in mssql_ping.nasl.
You can find sqlping.exe here: http://www.sqlsecurity.com/scripts.asp I really should fix that plugin so it actually parses out the information it gets back, we could use the version number to do "safe" checks for all those silly overflows... -HD On Tuesday 29 October 2002 09:18 am, Alvey Robert W KPWA wrote: > I'm currently using Nessus 1.2.6 on RedHat 7.3 with the Windows Client > for running the scans. > > I'm trying to determine the version numbers of SQL Server boxes to see > if they require a Service Pack or not, but when I tried using the SQL > Server UDP Info plugin I sent 108 IP's out and only received 60 reports > back, when I know all of the IP's were up and running. Of those I > received back, man of them were listed as SQL Server 2000 unpatched, > but I had verified some of them were successfully patched with Service > Pack 1 or 2. Has anyone else experienced this problem, and been able > to find a way around it? - > [EMAIL PROTECTED]: general discussions about Nessus. > * To unsubscribe, send a mail to [EMAIL PROTECTED] with > "unsubscribe nessus" in the body. - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
