On 3/2/07, Hari Sekhon <[EMAIL PROTECTED]> wrote:
Hi,
Running nessus has alerted me to the fact that it is possible to
enumerate the versions of my servers so I went and added a version
directive to bind to stop this. Now if you try it all you will get it
"[SECURED]" instead of the actual version.
The problem is that the nasl still seems to think it is vulnerable to
this because something is still returned, namely the "[SECURED]" string.
Even if you change the string, it is still possible to fingerprint
general versions of BIND because various versions of BIND will reply
to commands. I do not know if nessus is doing those extra tests, but I
do know that a couple of 'hacker-tools' come with the tests built in.
I normally put this report as a 1 on a scale of 1 to 5.
--
Stephen J Smoogen. -- CSIRT/Linux System Administrator
How far that little candle throws his beams! So shines a good deed
in a naughty world. = Shakespeare. "The Merchant of Venice"
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
