On Wed Sep 20 2006 at 14:21, A User wrote: >> A find_service_udp would be much more intrusive. > But again - what about those devices where we can't get local accounts?
Can you afford to crash them? > There are devices that run on non-standard UDP ports You mean *standard* services or non standard ports?? If this is known, that we can enhance the detection of a couple of protocols. e.g. if some company implements a DNS server on port 5353, we can add the necessary probe in dns_server.nasl >> Can you afford to run nmap -sU -sV for days to get this true picture? >> netstat -p would give it instantly. > For a complete review that needs to be performed where I technically > cannot or am prohibited by the system admin to do this, then yes! I wonder how many people can afford that. -- http://arboi.da.ru/ http://ma75.blogspot.com/ PGP key ID : 0x0BBABA91 - 0x1320924F0BBABA91 Fingerprint: 1048 B09B EEAF 20AA F645 2E1A 1320 924F 0BBA BA91 _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
