On Tue, 2006-03-07 at 15:59 -0600, Mallory, Danny wrote: > Anyone else seem to have issues with this plugin being a dependency for some > other authenticated based test? This plugin seems a bit weird and backwards > in that it test for full access, but only reports if none is achieved. If > this plugin is sucessful (access was not achieved) then it is reported, and > the other scripts depending on it don't run. > > This script seems a bit confusing at best :)
This plugin checks if you have a full read access to the registry. If it is not the case we try to avoid doing registry based checks because it may produce false positives. For example, Windows security hotfixes are in 2 different locations: SOFTWARE\Microsoft\Updates SOFTWARE\Microsoft\Windows NT\CurrentVersion\HotFix One location can only be read with full access (checked by plugin 10428) and sometimes patches are only present in this one. So if this plugin reports that it was not possible to fully read the registry with the account you used, you should change your account. If you want to use credential checks under windows you need an administrator account : http://www.nessus.org/documentation/nessus_credential_checks.pdf Nicolas _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
