Re: Nessus and Woody beta
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Did you run nessus on woody, or on another distro/platform? I'm unable to get
nessus to work right now...
Russell
On Friday 19 April 2002 09:02 am, Lars D. Noodén wrote:
> Hi,
>
> I've upgraded my test of woody (ppc) to the 2.4 kernel on to be able to
> use iptables and getting more acquainted with Debian. After the upgrade I
> ran nessus against the new set up and found the only two questionable
> items[1]
>
> First was the use of non-random IP IDS:
>
> The remote host uses non-random IP IDs, that is, it is
> possible to predict the next value of the ip_id field of
> the ip packets sent by this host.
>
> Is this something that can be fixed in the distro? Here's the package
> info for the kernel:
>
> ii kernel-image-2 2.4.18-1 Linux kernel binary image.
> ii pciutils 2.1.9-4 Linux PCI Utilities (for 2.[1234].x kernels)
>
> Granted, Nessus gives it low priority, but Kevin Mitnick was quite proud
> of being able to exploit this weakness.
>
>
> Second, the remote host answers to ICMP timestamp requests. If
> iptables or ipchains comes with a sample filter, then perhaps it could
> come with a chain/rule/comment to address this.
>
> -Lars
- --
Linux -- the OS for the Renaissance Man
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8wCYwAqKGrvVshJQRAvLrAKC2DDlUIaXAy3wZLxCwA0yVbolrjQCggs7j
oXx0lpNtAmaxG25QnKKFckk=
=Rtye
-----END PGP SIGNATURE-----
--
To UNSUBSCRIBE, email to debian-powerpc-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: