Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Disable service identification

from [Pete Duffin] Network Security [Permanent Link]
Subject: Re: Disable service identification
Date: Thu, 12 Jul 2007 17:33:37 -0400 
I'll have a look in the morning regarding the messages you mentioned.

However, I pounded out xaudio in inetd.conf and the problem is now gone. 
Interestingly enough, this is the line in inetd.conf:

xaudio        stream   tcp              wait     root 
/usr/openwin/bin/Xaserver              Xaserver -noauth -inetd

The binary /usr/openwin/bin/Xaserver  does not exist on the box.  Not sure 
if that has something to do with it.

There are about 600 or so solaris 8 boxes, all with the same inetd.conf, all 
with this problem.  I'm hoping xaudio was the problem.  They are servers, so 
audio isn't needed.


----- Original Message ----- 
From: "Michel Arboi" <mikhail@nessus.org>
To: "Pete Duffin" <pduffin@blabbernet.net>
Cc: <nessus@list.nessus.org>
Sent: Thursday, July 12, 2007 4:40 PM
Subject: Re: Disable service identification


Le Thu, 12 Jul 2007 16:30:26 -0400,
"Pete Duffin" <pduffin@blabbernet.net> a écrit :


Do you recall if xaudio has ever been a problem with Nessus?


No.

I am convinced that your problem is the classical rate limitation on
inetd. Have you seen something like "telnet/tcp server failing
(looping), service terminated" on your console or in /var/log/messages?

Solaris is not uncommon and I'd be very surprised if a denial of
service against such a critical component would have been unnoticed
until now. 

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Disable service identification, Michel Arboi
Next by Date:  RE: Windows report data, John Hally
Previous by Thread:  Re: Disable service identification, Michel Arboi
Next by Thread:  RE: Disable service identification, Devitto, Dom
Indexes:  [Date] [Thread] [Top] [All Lists]