Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

BUG: nessus-rmuser behaves badly...

from [Jones, David H] Network Security [Permanent Link]
Subject: BUG: nessus-rmuser behaves badly...
Date: Fri, 25 Feb 2005 16:47:14 -0600 
In an attempt to get a user list, I tried some various command line
variables, as well as just entering "nessus-rmuser" on its own hoping to
get help.

At the "Login to remove :" prompt, if you just hit enter, very bad bad
things happen.  If you are in the /users directory, *all* users are
deleted, as the example below shows:

bash-2.05# pwd
/usr/local/var/nessus/users
bash-2.05# ls -l
total 12
drwx------   4 root     root         512 Feb 25 16:34 bob
drwx------   4 root     root         512 Feb 25 16:35 joebobsmithzappa
drwx------   4 root     root         512 Feb 25 16:34 testuser02
drwx------   4 root     root         512 Feb 25 16:34 testuser03
drwx------   4 root     root         512 Feb 25 16:33 testuser1
drwx------   4 root     root         512 Feb 25 16:34 u123456789
bash-2.05# nessus-rmuser 
Login to remove : 
rm: Cannot remove any directory in the path of the current working
directory
/usr/local/var/nessus/users/
user removed.
bash-2.05# ls -l
total 0
bash-2.05# ls -la
total 4
drwx--x--x   2 root     root         512 Feb 25 16:35 .
drwx------   7 root     other        512 Feb 25 16:19 ..
bash-2.05#



In the next example, I ran the nessus-rmuser user command from the root
directory (/), again, pressing just enter at the "Login to remove :"
prompt.  In this case, it not only deleted *all* users, it also deleted
the /users directory.

bash-2.05# pwd
/usr/local/var/nessus/users
bash-2.05# ls -l
total 8
drwx------   4 root     root         512 Feb 25 16:38 bob1
drwx------   4 root     root         512 Feb 25 16:38 bob2
drwx------   4 root     root         512 Feb 25 16:39 bob3
drwx------   4 root     root         512 Feb 25 16:39 bob4
bash-2.05# cd /
bash-2.05# nessus-rmuser 
Login to remove : 
user removed.
bash-2.05# cd /usr/local/var/nessus
bash-2.05# ls -l
total 30
drwx------   2 root     other        512 Feb 22 10:43 CA
drwxr-xr-x   2 root     other        512 Feb 21 17:44 jobs
drwxr-xr-x   2 root     other        512 Feb 25 16:07 logs
-rw-r--r--   1 root     other        800 Feb 21 17:35 nessus_org.pem
-rw-r--r--   1 root     root           4 Feb 25 14:54 nessusd.pid
-rw-r--r--   1 root     other       4620 Feb 21 19:24 services.tcp
-rw-r--r--   1 root     other        834 Feb 21 19:24 services.txt
-rw-r--r--   1 root     other       2772 Feb 21 19:24 services.udp
drwxr-xr-x   2 root     other        512 Feb 21 17:44 tmp
bash-2.05# 


-----Original Message-----
From: nessus-bounces@list.nessus.org
[mailto:nessus-bounces@list.nessus.org] On Behalf Of
theall@tenablesecurity.com
Sent: Friday, February 25, 2005 4:14 PM
To: nessus@list.nessus.org
Subject: Re: User List


On Fri, Feb 25, 2005 at 04:06:08PM -0600, Jones, David H
wrote:


What file is the user list kept in, or is there a command line option 
somewhere to list users in the Nessus database?


There isn't a single source of information. Instead, look in the users
directory in $localstatedir (eg, /usr/local/etc/nessus/users); each user
will have a directory under that.

George
--
theall@tenablesecurity.com
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus


-----Message Disclaimer-----

This e-mail message is intended only for the use of the individual or
entity to which it is addressed, and may contain information that is
privileged, confidential and exempt from disclosure under applicable law.
If you are not the intended recipient, any dissemination, distribution or
copying of this communication is strictly prohibited. If you have
received this communication in error, please notify us immediately by
reply email to Connect@principal.com and delete or destroy all copies of
the original message and attachments thereto. Email sent to or from the
Principal Financial Group or any of its member companies may be retained
as required by law or regulation.

Nothing in this message is intended to constitute an Electronic signature
for purposes of the Uniform Electronic Transactions Act (UETA) or the
Electronic Signatures in Global and National Commerce Act ("E-Sign")
unless a specific statement to the contrary is included in this message.
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: User List, theall@tenablesecurity.com
Next by Date:  Re: BUG: nessus-rmuser behaves badly..., George A. Theall
Previous by Thread:  User List, Jones, David H
Next by Thread:  Re: BUG: nessus-rmuser behaves badly..., George A. Theall
Indexes:  [Date] [Thread] [Top] [All Lists]