OK, I have one more clue. If I comment out the line
force_pubkey_auth = yes in nessusd.conf, start up nessusd, and start up nessus, then I can login (the first time I was presented with the server's certificate, but not subsequent times). It's not all OK; when I hit the "login" button, the following error message appears on the console: SSL_CTX_load_verify_locations[19782]: error:06065064:digital envelope routines:EVP_DecryptFinal:bad decrypt This is exactly the type of error I'd get when I tried to run nessusd with a wrong value for pem_password in nessusd.conf. Maybe nessus expects a password for the client somewhere, but I have not seen where... kj - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
