In my most recent scanning tasks, I've been seeing a lot of plugins 10898, 10899, 10900, 10914, 10915, and 10916. After some poking and looking at it, it appears that this affects Windows 2000, and does not appear to affect windows 2003 server. I've yet to see a Windows XP box with any of these, but I've not done a really thorough test.
Does anyone know of a fix from MS to prevent account exposures (who has never changed their password, who has never logged in, etc) other than actually going in and changing their password? We found one to restrict where the information could be read from, which blocked a path out of the remote registry, but I was hoping for something else a little more official. For your reference: http://www.nessus.org/plugins/index.php?view=single&id=10898 http://www.nessus.org/plugins/index.php?view=single&id=10899 http://www.nessus.org/plugins/index.php?view=single&id=10900 http://www.nessus.org/plugins/index.php?view=single&id=10914 http://www.nessus.org/plugins/index.php?view=single&id=10915 http://www.nessus.org/plugins/index.php?view=single&id=10916 -- Doug Nordwall Unix, Network, and Security Administrator Noise proves nothing. Often a hen who has merely laid an egg cackles as if she laid an asteroid. -- Mark Twain
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
