Thank you Renaud, that's clear. I'll put in a request in the appropriate
forum that the plugins flag the service if it's disabled/enabled for future,
it would greatly help with risk assessment to know if it's a possible future
problem or a current one.
From: Renaud Deraison <[EMAIL PROTECTED]>
To: Nessus List <[email protected]>
Subject: Re: Scan with credentials
Date: Thu, 23 Mar 2006 17:40:19 -0500
On Mar 23, 2006, at 5:13 PM, Datdamwuf Datdamwuf wrote:
I normally don't use Nessus for host based scans but have some SUN boxes
I want to try it on. The boxes are config'd so you can't log in as root
remotely.
If using SSH, what level of access is required to ensure all the admin
level plugins work correctly?
If you're running a regular version of Solaris (ie: NOT Trusted Solaris),
a regular user account will work. If you're indeed running Trusted
Solaris, you'll probably need root credentials :/
Also, during some testing it appears Nessus is flagging missing patches
on services that have been disabled. Is there any way, other than the
port being open, to tell from the report if the services are actually in
use?
No. The reasoning behind that is that the fact that the service is not
running right now does not mean it won't run tomorrow, and if the service
is not used then it costs nothing to patch it (since you won't break
anything). In other words, "better be safe than sorry".
-- Renaud
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
_________________________________________________________________
On the road to retirement? Check out MSN Life Events for advice on how to
get there! http://lifeevents.msn.com/category.aspx?cid=Retirement
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
