Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Administrator and Guest Accounts

from [Adam Campbell] Network Security [Permanent Link]
Subject: RE: Administrator and Guest Accounts
Date: Mon, 14 Apr 2008 13:48:57 -0500 
I was referring to the local guest user account on the server.  If the
local guest account is enabled on the server, this plugin flags the
issue but the local administrator password being blank doesn't flag an
issue.  If I disable the local guest account, it will alert me that the
local administrator password is blank.

Adam Campbell
MIS Department
a la mode, inc.


-----Original Message-----
From: nessus-bounces@list.nessus.org
[mailto:nessus-bounces@list.nessus.org] On Behalf Of
nessus-request@list.nessus.org
Sent: Saturday, April 12, 2008 11:00 AM
To: nessus@list.nessus.org
Subject: Nessus Digest, Vol 54, Issue 11

Send Nessus mailing list submissions to
        nessus@list.nessus.org

To subscribe or unsubscribe via the World Wide Web, visit
        http://mail.nessus.org/mailman/listinfo/nessus
or, via email, send a message with subject or body 'help' to
        nessus-request@list.nessus.org

You can reach the person managing the list at
        nessus-owner@list.nessus.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Nessus digest..."


Today's Topics:

   1. Administrator and Guest Accounts (Adam Campbell)
   2. Re: Administrator and Guest Accounts (George A. Theall)
   3. Re: Host identification b/w workstation and server( or
      internet  facing system) (Chak Kevin)


----------------------------------------------------------------------

Message: 1
Date: Fri, 11 Apr 2008 14:22:57 -0500
From: "Adam Campbell" <Adam.Campbell@alamode.com>
Subject: Administrator and Guest Accounts
To: <nessus@list.nessus.org>
Message-ID:
        <EE552D963FCE9E45A1B7298BDB7C41CA032FF1@exchange1.alamode.com>
Content-Type: text/plain; charset="us-ascii"

I am new to Nessus and am running some basic scans to get a grasp on it.
I have two plugins enabled(SMB blank administrator password and SMB
guest account for all users) but I am only getting results for one.  If
I check the log it says "required key missing" on the plugin that didn't
run.  Here is my targeted server configuration and the nessus output.

 

 

Blank admin password and guest enabled = Results for SMB guest account
for all users

Blank admin password and guest disabled = Results for SMB blank
administrator password

 

 

 

Adam Campbell

MIS Department

a la mode, inc.

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://mail.nessus.org/pipermail/nessus/attachments/20080411/a010136d/at
tachment-0001.html 

------------------------------

Message: 2
Date: Fri, 11 Apr 2008 20:04:45 -0400
From: "George A. Theall" <theall@tenablesecurity.com>
Subject: Re: Administrator and Guest Accounts
To: nessus@list.nessus.org
Message-ID: <F0A46EAA-21B6-40EE-AD84-D8D580522478@tenablesecurity.com>
Content-Type: text/plain; charset=WINDOWS-1252; format=flowed;
        delsp=yes

On Apr 11, 2008, at 3:22 PM, Adam Campbell wrote:


I am new to Nessus and am running some basic scans to get a grasp on  
it.  I have two plugins enabled(SMB blank administrator password and  
SMB guest account for all users) but I am only getting results for  
one.  If I check the log it says ?required key missing? on the  
plugin that didn?t run.


In the case of these two plugins, you'll see this message in the log  
if you have optimization turned on and the plugin doesn't report a  
problem.


Here is my targeted server configuration and the nessus output.


Blank admin password and guest enabled = Results for SMB guest  
account for all users
Blank admin password and guest disabled = Results for SMB blank  
administrator password


With the "Guest only" module for local accounts, aren't network logons  
are automatically mapped to the guest account? How would you be able  
to determine if a particular local user, such as Administrator, is  
missing a password in that case?

George
-- 
theall@tenablesecurity.com





------------------------------

Message: 3
Date: Sat, 12 Apr 2008 01:00:38 -1000
From: Chak Kevin <kevinckc1628@hotmail.com>
Subject: Re: Host identification b/w workstation and server( or
        internet        facing system)
To: Nessus Discussion Board <nessus@list.nessus.org>
Message-ID: <BAY103-W344804869F8FE47BAB2CFAD6EE0@phx.gbl>
Content-Type: text/plain; charset="big5"


Thank you Mr. Theall. So, actually, how Nessus perform the particular
process after finish loading a plugin? For example, like you said
before, they send request to a port. How Nessus do this kind of sending?
Which part do this, Nessus or plugin? Thanks~


Kevin




Message: 19
Date: Wed, 26 Mar 2008 07:34:10 -0400
From: "George A. Theall"
Subject: Re: Host identification b/w workstation and server( or
internet facing system)
To: nessus@list.nessus.org
Message-ID: 
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes

On Mar 26, 2008, at 4:45 AM, Chak Kevin wrote:


I am trying to understand how Nessus identify a host is a web server
(or internet facing system) or just a regular workstation. Have this
identification been implemented in the source code? Or Nessus do
this by using some specific plugins?


Service detection isn't as black and white as this -- a host isn't
identified as being a web server or workstation. Instead, Nessus
attempts to identify the services running on the various ports(s)
being scanned so in theory it will catch the web server running along
with MySQL, SSH, and SMTP.

Nessus uses plugins for this. Some such as #10330, #17975, and #11153
are fairly general - they send a request to a port and make a
determination based on the banner or the results returned. Others are
specific to a single application / protocol.




_________________________________________________________________
5 GB ???? ????????????????? ? ???? Windows Live Hotmail
http://mail.live.com 


------------------------------

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

End of Nessus Digest, Vol 54, Issue 11
**************************************
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Host identification b/w workstation and server( or internet facing system), George A. Theall
Next by Date:  Nessus N00b question, Craig
Previous by Thread:  Re: Administrator and Guest Accounts, George A. Theall
Next by Thread:  Re: Administrator and Guest Accounts, Nicolas Pouvesle
Indexes:  [Date] [Thread] [Top] [All Lists]