Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Targeting Vista

from [Flickema, Drew W.] Network Security [Permanent Link]
Subject: Targeting Vista
Date: Thu, 18 Jan 2007 04:51:01 -0600 

Any Vista clients that join the forest get an IPSec policy to take
advantage of new functionality called IPSec Negotiate Discovery. WS03SP2
and XPSP3 once released will have this also and we have backport QFEs
for WS03SP1 and XPSP2 so you won't just see this on Vista.

These machines (Vista, WS03 SP2, XP SP3, XPSP2+ND QFE, WS03SP1+ND QFE)
only allow incoming communications via IKE (IPSec) and nothing in the
clear. Outgoing Communications are negotiated (IPSec and in the clear
simultaneously). If it can successfully negotiate IPSec then it will use
that otherwise fallback to the clear. This allows for stronger security
especially for mobile clients and potentially all clients if other
technologies are implemented.

If Nessus is sourcing from a forested Vista install, then it should be
able to communicate and perform it's authenticated assessment when
targeting other clients in the forest.  If Nessus is sourcing from a non
forested client or installed on a non-windows platform, then
authenticated checks will always fail since Nessus does not talk IPSec.


Will there be any effort to develop Nessus communications so that it too
will attempt to negotiate IPSec or fail back to clear channel?  If this
moves forward, what is the perceived impact to scan times when
considering a global enterprise consisting of multiple Oses?

Regards -
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Scanning Win2k with Nessus, Nicolas Pouvesle
Next by Date:  Plugin ID : 19552 Question, jfvanmeter
Previous by Thread:  Invalid response file, Frank OSborne
Next by Thread:  Re: Targeting Vista, Renaud Deraison
Indexes:  [Date] [Thread] [Top] [All Lists]