Michel Arboi wrote: >>www_fingerprinting_hmap.nasl you can also get a report by enabling >>thorough testing while that won't work for smtpscan.nasl. >> >> > >hmap is rather slow currently. That's why it is enabled in thorough >tests. > >If I understand well, the problem is that the SMTP server was >identified as qmail but Nessus said nothing in the report? >BTW, is smtpserver_detect.nasl still useful? > > Yes. My point was that it was obvious from the Nessus logs that it had figured out it was talking to a Qmail server, but it made no reference to that fact in the report. This is out of character (IMHO) as Nessus definitely reports when it finds an Apache or IIS server - so why not other services such as SMTP? (I haven't checked what it reports for FTP, etc, so maybe this affects more than just SMTP) -- Cheers Jason Haar Information Security Manager, Trimble Navigation Ltd. Phone: +64 3 9635 377 Fax: +64 3 9635 417 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 _______________________________________________ Plugins-writers mailing list Plugins-writers@private http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2.1.3 : Tue Oct 25 2005 - 13:39:58 PDT