I am running Nessus 3.2.1 daemon (the 7-day delay version) on "Linux". The client is installed on Windows XP & version 3.2.1.
I added a user (this user is not a Linux system user) using nessus-adduser(8) - I only want this user to be able to scan the machine he connects from. So I added rules "accept client_ip" and "default deny", ^D. But this is not working. When this user logs on from the Windows client machine he can scan any host or subnet he wants. I have looked on the server - /opt/nessus/var/nessus/users/user_name/auth/rules file - and it has two entries: accept client_ip and default deny. Is there something I am doing wrong? Any help would be much appreciated. Thanks. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
