http://www.nessus.org/documentation/nessus_domain_whitepaper.pdf is probably a good starting point.
S. J From: nessus-boun...@list.nessus.org [mailto:nessus-boun...@list.nessus.org] On Behalf Of Doug Nordwall Sent: Thursday, 12 February 2009 3:25 AM To: Nessus nessus Subject: minimum set of permissions does anyone have the minimum set of permissions needed to run an authenticated scan with safe checks enabled on windows machines? I know there is a lot of registry reading, but I'm guessing not writing. My desire is is to make a user that can complete a scan, but will pose minimal other risks. on unix, it doesn't appear possible to limit the command set much, as most of it appears to be running through /bin/sh (run a sudo scan and check your logs) -- Doug Nordwall Unix, Network, and Security Administrator You mean the vision is subject to low subscription rates?!!? - Scott Stone, on MMORPGs
_______________________________________________ Nessus mailing list Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus