Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: nesssus crashing TSM client

from [George A. Theall] Network Security [Permanent Link]
Subject: Re: nesssus crashing TSM client
Date: Thu, 24 Aug 2006 12:09:58 -0400 
On Mon, Aug 21, 2006 at 04:01:43PM -0400, access-list wrote:

> I ran some scans a week ago against some boxes that have been scanned
> before.  Apparently the scan crashed the TSM (a system backup
> application)  client on over four boxes.
...
> Have there been any recent changes to any NASLs that may
have caused this? 

Not that I can think of.

In the past, were you scanning this particular service (port 1581 is where it runs by default, I think)?

My sys admins (albeit irritated) are looking for a root cause.

IBM should be able to provide a definitive answer so I hope you're contacting them.

> Please see the log below and offer any comments you may have.
...
08/13/2006 09:31:43 isFileNameValid: Invalid file name cgi-bin/ChangeLog - file type required.
08/13/2006 09:31:43 Session Function thread, fatal error, signal 11
[root@lx76meldev]:[/opt/tivoli/tsm/client/ba/bin]:>

The log entries come from plugins that scan CGI directories, which suggests you may be able to avoid future segfaults by disabling CGI scanning (it's a checkbox in the "Global variable settings" preference).

George
--
theall@tenablesecurity.com
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: common false positives for several HTTP header tests ??, George A. Theall
Next by Date:  Nessus 3 install on Solaris 8 problem, Patrick C Read
Previous by Thread:  nesssus crashing TSM client, access-list
Next by Thread:  announce: nessquik 1.1, Tim Rupp
Indexes:  [Date] [Thread] [Top] [All Lists]