I am attempting to scan the network for open SMB shares. The only
plug-in I have enabled is "SMB shares access." I have set up a shared
test folder with some mock data in it on two of my boxes and given "Full
Control" to "Everyone."
When I scan with credentials that have local admin privileges on the
box, I retrieve a list of the shares.
When I scan without credentials or with credentials that do not have
local admin privileges on the box I retrieve no results; however, if I
try to access the shares from another windows box using the same (non
admin on other machine) credentials, I am able to view and edit the
share (as they are set to full control to everyone).
Why would the results not be showing when I am purposely adding unsecure
permissions? Is there another plug-in I should enable?
Thanks for your help!
Steven Moore
Enterprise Security Unit
Information Systems and Services Divistion
Orange County Government, Florida
_______________________________________________
Nessus mailing list
[email protected]
http://mail.nessus.org/mailman/listinfo/nessus
