Renaud Deraison wrote:
If you disable safe checks, then don't expect any good performance from nessusd. Some DoS are pretty nasty and take a very long time to complete.
For a day-to-day scan, you should really enable them.
This is a month-to-month scan - so I want 'em disabled ;-)
Problem fixed: It ended up being a broken app on the Linux box. Well not broken - port 81 was actually an xinetd controlled redirect to a remote Web server on a 256K link (i.e. a reverse proxy) - sort of S.L.O.W.E.D down the HTTP tests "a wee bit" :-)
Turned off that app, and the test time dropped from 2000+ secs to 460 secs
Thanks. That was hard to figure out. In fact, I really just stumbled across the fault by going through the report line by line and testing each found problem until "I noticed" (very quantitative ;-) that port 81 really seemed slower that it should be. Amazing what an extra 100ms/packet can do to times.
-- Cheers
Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
