On Wednesday 21 January 2009 18:27:17 Jones, David H wrote: > I'm having an issue with Nessus locking out root accounts on AIX servers.
IMHO, the configuration of these servers is broken. Autolock on root is a vulnerability in itself, as it exposes you to a very simple denial of service. > My config seems like this shouldn't be happening: Safe Checks are enabled. > The following plugin families are disabled: "Default Unix Accounts" - > "Gain a shell remotely" - "Gain root remotely". Did you enable Hydra or Medusa tests? _______________________________________________ Nessus mailing list Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus
