Hello sir I am using Openvas 9 in my Ubuntu virtual machine for educational purposes.
When i scan my other virtual machines with given(username+password) credentials of my local machines and try to listen ssh logs, i realize that Openvas is trying to connect from ssh with different credentials(not my credential) and in the terminal it looks like this; -Failed password for invalid user netscreen from 192.168.45.1 -Failed password for invalid user super from 192.168.45.1 port 12269 ssh2 -Received disconnected from 192.168.45.1 port 12269:11: Bye Bye -Failed password for invalid user chip from 192.168.45.1 port 12274 ssh2 -Received disconnected from 192.168.45.1 port 12274:11: Bye Bye -Failed password for root from 192.168.45.1 port 12271 ssh2 -Received disconnected from 192.168.45.1 port 12271:11: Bye Bye -İnvalid User admin from 192.168.45.1 -Input_userauth_request: invalid user admin ............... and bunch of stuff like that Why Openvas does that? Even when i disable brute_force_attack and default_accounts from scan config it still tries to brute force my ssh. How can i prevent this? Thanks....
_______________________________________________ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
