Shahid Sharif wrote: >I ran a scan against an XP machine and nessus reported: > >14818 <http://www.nessus.org/plugins/index.php?view=single&id=14818> 0 >It was >possible to log into the remote host with the login 'X' and a blank password. >A > > ...
>When we used other tools to test this system, we found nothing wrong at all. > > > Did you do the most obvious test? Try to login from the console on that machine as username "X", blank password and Domain set to the machines name? If that works and you can login, then it doesn't matter a pair of fettid dingoes kidneys what these other tools say - you are 0wNed! ;-) -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
