I was afraid of that. I guess I'll see if the sunfreesoftware.com guys are willing to update the port to include better version info or our admins will start rolling their own OpenSSH (which I assume would have a better banner?). Thanks, Owen -----Original Message----- From: Renaud Deraison [mailto:deraison@private] Sent: Wednesday, March 10, 2004 3:33 PM To: plugins-writers@private Subject: Re: [Plugins-writers] False positive for 10965: ssh_AllowedAuthentications.nasl? On Wed, Mar 10, 2004 at 03:26:50PM -0600, Crow, Owen wrote: > When running a full, non-safe, non-optimized scan against a new Solaris 9, I > get the following alert: > > > > "You are running a version of SSH which is older than 3.1.2 and newer or > equal to 3.0.0. > > [snip]" > The version we have installed from is openssh-3.7.1p2-sol9-sparc-local from > sunfreesoftware.com so it should be way past 3.1.2. It may be the banner > from sshd is confusing it which reads: SSH-2.0-Sun_SSH_1.0 Do you mean that sunfreesoftware.com is distributing a version of OpenSSH with this weird banner ? You may be able to fix that by adding this signature to backport.inc. -- Renaud _______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers _______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2b30 : Wed Mar 10 2004 - 13:46:05 PST