I've configured local security checks as described here: http://www.nessus.org/documentation/index.php?doc=ssh
However the local checks do not appear in the report. I can log in via SSH using public key authentication from the Nessus client to the target, so that part is working. I've included some log entries below (this scan had just one local plugin enabled). Does anyone have any idea what the problem might be? Thanks Jon Nessus version - 2.2.4 /var/log/auth.log on the target shows: May 15 15:38:01 target_host_name sshd[32241]: Did not receive identification string from nessus_server_ip May 15 15:38:01 target_host_name sshd[32245]: Bad protocol version identification '\026\003\001' from nessus_server_ip May 15 15:38:01 target_host_name sshd[32250]: Bad protocol version identification '\026\003' from nessus_server_ip May 15 15:38:01 target_host_name sshd[32255]: Bad protocol version identification 'GET / HTTP/1.0' from nessus_server_ip /var/nessus/logs/nessusd.messages on the Nessus server shows [Tue May 15 15:37:56 2007][25176] user nessus starts a new scan. Target(s) : x.x.x.x, with max_hosts = 20 and max_checks = 4 [Tue May 15 15:37:56 2007][25176] user nessus : testing x.x.x.x (x.x.x.x) [26996] [Tue May 15 15:37:56 2007][26996] user nessus : launching clrtxt_proto_settings.nasl against x.x.x.x [26997] [Tue May 15 15:37:56 2007][26996] user nessus : launching ssh_settings.nasl against x.x.x.x [26998] [Tue May 15 15:37:56 2007][26996] clrtxt_proto_settings.nasl (process 26997) finished its job in 0.008 seconds [Tue May 15 15:37:56 2007][26996] ssh_settings.nasl (process 26998) finished its job in 0.007 seconds [Tue May 15 15:37:56 2007][26996] user nessus : launching ping_host.nasl against x.x.x.x [26999] [Tue May 15 15:37:56 2007][26996] ping_host.nasl (process 26999) finished its job in 0.033 seconds [Tue May 15 15:37:56 2007][26996] user nessus : launching nmap.nasl against x.x.x.x [27000] [Tue May 15 15:37:56 2007][26996] nmap.nasl (process 27000) finished its job in 0.024 seconds [Tue May 15 15:37:56 2007][26996] user nessus : launching find_service.nes against x.x.x.x [27002] [Tue May 15 15:38:01 2007][26996] find_service.nes (process 27002) finished its job in 5.061 seconds [Tue May 15 15:38:01 2007][26996] user nessus : launching ssh_get_info.nasl against x.x.x.x [27009] [Tue May 15 15:38:01 2007][26996] shared_socket: Secret/SSH/socket is unknown [Tue May 15 15:38:01 2007][26996] Process 27009 seems to have died too early [Tue May 15 15:38:01 2007][26996] ssh_get_info.nasl (process 27009) finished its job in 0.049 seconds [Tue May 15 15:38:01 2007][26996] user nessus : Not launching gentoo_GLSA-200 401-01.nasl against x.x.x.x because the key Host/Gentoo/qpkg-list is missing (this is not an error) [Tue May 15 15:38:01 2007][26996] Finished testing x.x.x.x. Time : 5.34 secs [Tue May 15 15:38:01 2007][25176] user nessus : test complete _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
