On Wed, Jun 18, 2003 at 09:32:41AM -0400, royeda01 wrote: > Hi > Just ran a fresh scan: > > nessusd.messages ::: > > [Wed Jun 18 09:10:15 2003][8739] connection from 127.0.0.1 > [Wed Jun 18 09:10:15 2003][11716] Client requested protocol version 101. > [Wed Jun 18 09:10:26 2003][11716] Installing IO thread id tracker. > [Wed Jun 18 09:10:33 2003][11716] successful login of xxxx from 127.0.0.1 > [Wed Jun 18 09:10:43 2003][11716] Redirecting debugging output to > /var/lib/nessus/nessusd.dump > [Wed Jun 18 09:10:44 2003][11716] user xxxx starts a new attack. Target(s) : > xxx.xxx.xxx, with max_threads = 15 > [Wed Jun 18 09:10:44 2003][11716] user xxxx : rejected attempt to scan xxx.xxx.xxx ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
That sums it up. You are scanning a host you forbid to scan in your rules (see /usr/local/etc/nessus/nessusd.rules, /usr/local/var/nessus/<xxx>/auth/rules and finally .nessusrc)
