"However if multiple SSH daemons are running on the remote host, then problems may occur." -- Renaud
Can you speculate on what those problems could be, e.g. Does the Nessus server crash? Only login once per host ? Login repeatedly but overwrite the previously collected information each time? I'd generally recommend running different configs files on different interfaces/ports to give increased restrictive power. E.g. 'PermitRootLogin no' is on port 22, and 'PermitRootLogin yes' is on port 1022, but 1022 is IP filtered to allow access only from the most secure hosts. Dom Dom De Vitto | Security Consultant Virgin Media, Crawley Court, Crawley, Winchester, Hants, SO21 2QA M: 07855 805 271 D: 01483 87 5500 E: [EMAIL PROTECTED] -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Renaud Deraison Sent: 10 June 2007 09:17 To: Nessus List Subject: Re: Unknown function On Jun 10, 2007, at 10:01 AM, Devitto, Dom wrote: > Two follow-ups to this: > 1) Any plans to support SSHv1? > (or can I this be hack this in easily with unsupported botches? :-) ) No and no -- SSHv1 is a very different protocol, and you'd need to entirely rewrite ssh_func.inc > > 2) The Nessus_credial_checks.pdf says, under "What else can go > wrong with my > host checks?" ... > "On UNIX systems, administrators that move SSH to ports other than 22" > > But it appears that (now) Nessus can login whatever the SSH port > used, as > long at detects (scans) the port that SSH is running on - correct? This is correct. However if multiple SSH daemons are running on the remote host, then problems may occur. have a good sunday, -- Renaud _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus ------------------------------------------------------------------------------ Save Paper - Do you really need to print this e-mail? Visit www.virginmedia.com for more information, and more fun. This email and any attachments are or may be confidential and legally privileged and are sent solely for the attention of the addressee(s). If you have received this email in error, please delete it from your system: its use, disclosure or copying is unauthorised. Statements and opinions expressed in this email may not represent those of Virgin Media. Any representations or commitments in this email are subject to contract. Please note that we are migrating our email addresses to a company wide address of "@virginmedia.co.uk". If you are sending to a Telewest or ntl email address your email will be re-directed. Registered office: 160 Great Portland Street, London W1W 5QA. Registered in England and Wales with number 2591237 ============================================================================== _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
