rgula at tenablesecurity
Feb 17, 2009, 6:38 AM
Post #2 of 2
(2977 views)
Permalink
|
|
Re: False OS X detection with no report info
[In reply to]
|
|
Richard Puerto wrote:
> We have been getting some scan reports that show the host as OS X but then
> no results information. It seems that it is happening when the scanner
> encounters ports on a switch that has port redirection enabled.
>
> Does anyone know how to configure Nessus to ignore port redirection or OS X
> scanning ?
>
> Richard
This would be an excellent discussion on the new Discussion portal located
here:
https://discussions.nessus.org/index.jspa
If you are targeting an IP address and a port or firewall or other network
device is tacking certain ports and redirecting them to other IP addresses,
this will effect the results that Nessus (or any other network scanner)
will see.
In this situation, I'd recommend you restrict your audit to just the ports
you know that the OS X system is listening on, or that you perform a 100%
credentialed patch audit. Of course if you can change the location of your
Nessus scanner to a point behind the redirection, this will give you direct
access to the OS X as well.
Ron Gula
Tenable Network Security
_______________________________________________
Nessus mailing list
Nessus [at] list
http://mail.nessus.org/mailman/listinfo/nessus
|
