OK, I'm new to Nessus and I want to use it to supplement my use of eRetina.
I installed Nessus on my local machine (both server and client) and started
scanning MS machines with the three sections for Windows plugins selected.
However all my attempts at scanning show limited access to the target
machine. The results show vulnerabilities per port, but doesn't no where
does it show the Microsoft patches I know are missing (ones that eRetina
does find).
I configured the scan policy to use an account with domain admin privileges,
but I cannot get registry access. I tried using the local machine admin
account (username: machinename\admin-name), but either I entered it wrong or
it can't get registry access either via Nessus.
The Nessus report has these entries:
Local Checks Failed
Synopsis :
It was not possible to log into the remote host
Description :
The credentials provided for the scan did not allow us to
log into the
remote host.
Also:
SMB log in
Synopsis :
It is possible to log into the remote host.
Description :
The remote host is running one of the Microsoft Windows
operating
systems. It was possible to log into it using one of the
following
account :
- NULL session
- Guest account
- Given Credentials
And:
Synopsis :
Nessus is not able to access the remote Windows Registry.
Description :
It was not possible to connect to PIPE\winreg on the remote
host.
If you intend to use Nessus to perform registry-based
checks, the
registry checks will not work because the 'Remote Registry
Access'
service (winreg) has been disabled on the remote host or can
not be
connected to with the supplied credentials.
I checked my sanity by opening up regedit and confirming I could open the
remote registry using the domain admin credentials. When I use eRetina,
using the domain account or the local admin account, it scans the registry
with no problems.
I reviewed the manual and searched the archives. I found the following
discussion which seems to mirror the issue I'm having:
http://mail.nessus.org/mailman/htdig/nessus/2003-October/007431.html, but
this solution didn't work for me.
Any suggestions or am I just missing something and Nessus is functioning
correctly?
Thanks for any help.
reswob
-------------------------------
Motivation is what gets you started, habit is what keeps you going. - Jim
Ryun
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
