[prev in list] [next in list] [prev in thread] [next in thread]
List: nessus
Subject: RE: False Positive for Plugin ID 10412 (SMB Registry Autologon)
From: "Mallory, Danny" <Danny.Mallory () fnf ! com>
Date: 2005-03-24 3:52:20
Message-ID: 9610AA423457CE47B8F217B25B97191F140AF7 () CMBFISLR03 ! FNFIS ! COM
[Download RAW message or body]
--===============1265567758==
content-class: urn:content-classes:message
Content-Type: multipart/alternative;
boundary="----_=_NextPart_001_01C53024.E133B37D"
This is a multi-part message in MIME format.
I saw this on a couple of systems too.. Looks like the changes to the script require \
that all 3 fields need to be blank to pass.
User, Password and Autologon.
-----Original Message-----
From: nessus-bounces@list.nessus.org on behalf of Peter Heard
Sent: Wed 3/23/2005 6:19 PM
To: nessus@list.nessus.org
Cc:
Subject: False Positive for Plugin ID 10412 (SMB Registry Autologon)
I am getting false positives from the plugin 10412 (SMB Registry Autologon)
over the past day or so.
I have checked the registry and clearly the machines are not set to
autologon. The registry values are:
DefaultUserName:RG_SZ: joeblow
DefaultPassword:RG_SZ: contains nothing (null)
AutoAdminLogon:RG_SZ: 0
I am running Redhat ES 3 with Nessus 2.2.3. The plugin 10412 is version
1.13.
Peter Heard
------------------------------------------------------------------------
PLEASE NOTE:
The entire content of this e-mail is for "information purposes" only
unless otherwise confirmed in writing by way of letter or facsimile."
------------------------------------------------------------------------
Peter Heard E-mail: peter@mda.ca
Electrical Engineer Phone: 1 (604) 231-2358 (direct)
MacDonald Dettwiler Phone: 1 (604) 278-3411 (operator)
13800 Commerce Parkway, Fax: 1 (604) 278-2936
Richmond BC Canada, V6V 2J3 URL: http://www.mda.ca
------------------------------------------------------------------------
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[Attachment #3 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=Windows-1252">
<META NAME="Generator" CONTENT="MS Exchange Server version 6.0.6603.0">
<TITLE>RE: False Positive for Plugin ID 10412 (SMB Registry Autologon)</TITLE>
</HEAD>
<BODY>
<!-- Converted from text/plain format -->
<P><FONT SIZE=2>I saw this on a couple of systems too.. Looks like the changes to the \
script require that all 3 fields need to be blank to pass.<BR> <BR>
User, Password and Autologon.<BR>
<BR>
<BR>
<BR>
<BR>
-----Original Message-----<BR>
From: nessus-bounces@list.nessus.org on behalf of Peter Heard<BR>
Sent: Wed 3/23/2005 6:19 PM<BR>
To: nessus@list.nessus.org<BR>
Cc: <BR>
Subject: False Positive for Plugin ID 10412 \
(SMB Registry Autologon)<BR> I am getting false positives from the plugin 10412 (SMB \
Registry Autologon)<BR> over the past day or so.<BR>
<BR>
I have checked the registry and clearly the machines are not set to<BR>
autologon. The registry values are:<BR>
DefaultUserName:RG_SZ: joeblow<BR>
DefaultPassword:RG_SZ: contains nothing (null)<BR>
AutoAdminLogon:RG_SZ: 0<BR>
<BR>
I am running Redhat ES 3 with Nessus 2.2.3. The plugin 10412 is version<BR>
1.13.<BR>
<BR>
Peter Heard<BR>
------------------------------------------------------------------------<BR>
PLEASE NOTE:<BR>
The entire content of this e-mail is for "information purposes" only<BR>
unless otherwise confirmed in writing by way of letter or facsimile."<BR>
------------------------------------------------------------------------<BR>
Peter Heard \
E-mail: peter@mda.ca<BR> Electrical \
Engineer \
Phone: 1 (604) 231-2358 (direct)<BR> MacDonald \
Dettwiler \
Phone: 1 (604) 278-3411 (operator)<BR> 13800 Commerce \
Parkway, Fax: 1 (604) \
278-2936<BR> Richmond BC Canada, V6V 2J3 URL: <A \
HREF="http://www.mda.ca">http://www.mda.ca</A><BR>
------------------------------------------------------------------------<BR>
<BR>
_______________________________________________<BR>
Nessus mailing list<BR>
Nessus@list.nessus.org<BR>
<A HREF="http://mail.nessus.org/mailman/listinfo/nessus">http://mail.nessus.org/mailman/listinfo/nessus</A><BR>
<BR>
<BR>
<BR>
</FONT>
</P>
</BODY>
</HTML>
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
--===============1265567758==--
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic