On Jun 1, 2005, at 4:06 PM, Waheed Qureshi wrote:
Hi all, This is sort of an emergency. Running a scan against one of our clients with "allbutdangerous" enable causes some of their nix boxes to lock the root account via ssh, telnet and ftp. Nothing is obvious in the "allbutdangerous" file and per my understanding, Nessus does not do active checks while running in the safe mode (without dangerous plugins), so what’s going on?
Nessus tries to logon with default password. I suspect the policy is defined to lock account after X bad connections.
Disable "Default Unix Accounts" family and Nessus won't try to logon with default login/password by SSH/telnet.
Nicolas _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
