Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Nessus .Audit files and I2A

from [Mehul] Network Security [Permanent Link]
Subject: Re: Nessus .Audit files and I2A
Date: Tue, 28 Aug 2007 21:32:07 -0400 
For example the service general settings section of the .inf file cannot be
parsed.


It means that that tool could not parse the line in the .inf file.
Looking at the file that you attached it seems the error is harmless,
since the line number with in the file corresponds to a blank line.


 No map defined for [ NewAdministratorName ]
 No map defined for [ NewGuestName ]


The above 2 settings correspond to

"Accounts: Rename Administrator account" &
"Accounts: Rename guest account"

which cannot be parsed by the i2a tool, these settings need to be
manually added in the .audit file as follows

<custom_item>
      type: CHECK_ACCOUNT
     description: "Accounts: Rename Administrator account"
     value_type: POLICY_TEXT
     value_data: "Administrator"
     account_type: ADMINISTRATOR_ACCOUNT
     account_option: ACCOUNT_NOT_EQUAL
</item>

<custom_item>
   type: CHECK_ACCOUNT
   description: "Accounts: Rename guest account"
   value_type: POLICY_TEXT
   value_data: "Guest"
   account_type: GUEST_ACCOUNT
   account_option: ACCOUNT_NOT_EQUAL
</item>


 No map defined for [ ClearTextPassword ]


As far as I remember, this particular setting cannot be audited using
Nessus compliance checks. Correct me If I am wrong.

- Mehul
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Nessus .Audit files and I2A, Holstein, Robert - BLS CTR
Next by Date:  smb login, Christian . Houle
Previous by Thread:  Nessus .Audit files and I2A, Holstein, Robert - BLS CTR
Next by Thread:  smb login, Christian . Houle
Indexes:  [Date] [Thread] [Top] [All Lists]