Description in mssqlserver_detect.nasl

From: Nicolas Gregoire (ngregoireat_private)
Date: Thu Mar 20 2003 - 14:06:17 PST

Next message: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"

Previous message: Anne Carasik: "Re: ssh ident"
Next in thread: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"
Reply: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

actually, the description in this plugin is :

"Microsoft's SQL Server uses port TCP:1433 and TCP:139 for communication
between two SQL servers and between the clients and the server. Since
the above ports is open MS SQL server is probably running and open for
outside attacks."

Now that the plugin checks for more than an open port (ie. tries to log
in) and only targets port TCP/1433, it would be great to change the
message, isn't it ?


Regards,
-- 
Nicolas Gregoire ----- Consultant en Sécurité des Systèmes d'Information
ngregoireat_private ------[ ExaProbe ]------ http://www.exaprobe.com/
PGP KeyID:CA61B44F  FingerPrint:1CC647FF1A55664BA2D2AFDACA6A21DACA61B44F

application/pgp-signature attachment: This is a digitally signed message part

Next message: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"
Previous message: Anne Carasik: "Re: ssh ident"
Next in thread: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"
Reply: Renaud Deraison: "Re: Description in mssqlserver_detect.nasl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Mar 20 2003 - 14:10:06 PST