Re: Nessus against Novell file servers.

• Previous message: Stephen Lewis: "Identifying MS Sharepoint"
• In reply to: Roni Bachar: "Re: Nessus against Novell file servers."
• Next in thread: john thomas: "RE: Nessus against Novell file servers."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 16 Mar 2005 19:32:24 +0000
To: Roni Bachar <roni@avnet.co.il>

Roni Bachar wrote:
<snip>
>
> so test if this is your case if yes disable the ftp module.
>

Good idea, until you consider that this is the pen-test mailing list
frequented by pen-testers who should really be investigating this
vulnerability to find out if it is a reproducible and therefore
reportable DoS vulnerability. Going even further there may be
exploitability.

I realise that the present situation is a VA only, so the client might
not want this reported/exploited, but the OP should really investigate
further. I don't believe it's common practice (at least I don't do it)
to ignore a vulnerability because someone else hasn't released an
exploit for it.

"disable the ftp module" is probably the most crazy statement I've seen
this week (actually it's not but I just said that for effect).

My advice would be, disable the FTP module in order to continue your
test, report the DoS as part of the pen-test report (if the client is
interested to that extent) and then investigate further and disclose the
vulnerability in whatever way your disclosure ethics define.

Don't switch it off and ignore it, *please*!!

-- 
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue
blog: http://zeedo.blogspot.com
site: http://www.bsrf.org.uk
CA: www.cacert.org
"He who hingeth aboot, getteth hee-haw" - Victor (Still Game)

• application/x-pkcs7-signature attachment: S/MIME Cryptographic Signature

• Previous message: Stephen Lewis: "Identifying MS Sharepoint"
• In reply to: Roni Bachar: "Re: Nessus against Novell file servers."
• Next in thread: john thomas: "RE: Nessus against Novell file servers."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Starting a Pen-Testing Career ... Perhaps my perceptions of the business are a bit naive, ... Buinsesses don't care about security and vulnerabilty and exposure. ... How else would they be able to provide such a report in isolation - ... written vulnerability scanner' to produce reports. ... (alt.computer.security) RE: MBSA scanner ... the license must state clearly what is restricted. ... that referred to the nature of the vulnerability or exploit itself would be ... > all the suggestions on how to fix a vulnerability that a report might ... > nothing preventing Nessus, Internet Scanner, Cybercop, Retina, ... (Pen-Test) Re: MBSA scanner ... all the suggestions on how to fix a vulnerability that a report might ... > Nessus is another example; the GPL has the same restrictions on distribution ... And also read the GPL FAQ: ... (Pen-Test) D-Link Access Point DWL-900AP+ TFTP Vulnerability ... ETHEREANET-NCC Security Report EN-NCC-20021014-04 ... D-Link Access Point DWL-900AP+ TFTP Vulnerability ... the device features also an embedded TFTP ... receive a binary image of the device configuration which contains, ... (Bugtraq) RE: Netstumbling ... to their network, ... If I find a vulnerability and expose it to access ... >> Are your vulnerability scans producing just another report? ... > Manage the entire remediation process with StillSecure VAM's ... (Pen-Test)