Thanks George. I got it figured out. Here is the
whos & hows:
> Can you explain in more detail what you're doing,
Compiled Nessus w/tcpwrappers
edited /etc/hosts.allow as follows:
nessusd: /hostsallowed.txt:
> especially who's
Just multiple Nessus clients/users needing to run
scans.
> connecting and from where?
All are Windows' clients on the same subnet as the
Nessus server. All clients are using SSL certs.
>Also, is there anything
> in nessusd.messages
> that suggests what the problem is?
The only thing that shows in the nessusd.messages is,
as soon as user 1 disconnects, a connection attemp
from user 2 is recorded, _even though user 2 has
already cancelled the connection attempt. Like the
server is holding it in a buffer waiting for a free
connection.
Now, for the answer. It seems Nessus' tcpwrappers
doesn't like the colon (":" (without the quotes))
after the client list in /etc/hosts.allow. It doesn't
seem to matter whether or not I have any shell
commands after the colon. I use it with certain
xinetd services and didn't expect it to be an issue.
Thanks for the help.
John B.
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month!
http://sbc.yahoo.com
