Hello Everyone, I'm having a some issues with the FDCC Audit File.
I'm using the newest fdcc audit file FDCC_Desktops_v90.audit.
I'm rescanning a XP workstation that was previously scanned with Secutor Prime
and that scan reported that the workstation was complint.
When I scan the same workstation with Nessus and the FDCC_Desktops_v90.audit.,
I get ten failures.
As an example the file checks
<item>
name: "Deny log on through Terminal Services"
value: "Guests"
</item>
The report shows the following
"Denied Logon Through Terminal Services" : [FAILED]
Remote value: "guests" | "renamed_guest"
Policy value: "Guests"
The security policy Denied Logon Through Terminal Services to the Guests
group, but I also denied access to the renamed guest account. I don't believe
this is a true failure, since I meet the criteria for the check, but I'm also
restricting addational accounts.
Is there a way that check can be written to look for "Guests" , but not fail if
I place addational restrict on other groups or users?
Thanks in advanced
Take Care and Have Fun --John
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
