Re: 1 nouveau sujet d'inquiétude... :( ?
> On Mon, 19 Apr 2004 00:21:41 +0200 Mezig <nissuacfeneyrol@free.fr>
wrote:
>> Suite à mes PB de lancement des services, j'ai essayé chkrootkit et
il m'a sorti ...,
>> Searching for suspicious files and dirs, it may take a while...
>> /usr/lib/nessus/plugins/.desc
>> /usr/lib/nessus/plugins/.desc
>
> - Que contiennent-ils ?
Je colle ici ce que j'ai trouvé dans la fin du répertoire
/usr/lib/nessus/plugins/.desc... ! En espérant que ça serve :) ?
Ca fait du monde..., mais/et ma console ne remonte pas + haut... :( !
(...)
nestea.desc
netauth.desc
netbeans.desc
netbios_mem_disclosure.desc
netbios_name_get.desc
netbus2.desc
netbus.desc
netcharts_default_password.desc
netcommerce_sql.desc
netgear_default_password.desc
netgear_password_disclosure.desc
netgear_prosafe_dos.desc
netinfo_detect.desc
netinfo_passwd.desc
netinfo_rpc.desc
netobserve_command_execution.desc
netscape_accept_overflow.desc
netscape_adminpw.desc
netscape_crash.desc
netscape_entreprise_dot_overflow.desc
netscape_entreprise_index.desc
netscape_fasttrack.desc
netscape_imap_overflow.desc
netscape_PageServices.desc
netscape_pop_auth.desc
netscape_publishing_expert_psuser.desc
netscape_wp_tag.desc
NetSphere.desc
netstat.desc
nettools_cmd_exec.desc
netware_perl_overflow.desc
netware_post_perl.desc
newdsn.desc
newsdesk.desc
nfs_dotdot.desc
nfs_fsirand.desc
nfs_mount.desc
nfs_portmap.desc
nfs_xlog_overflow.desc
nimda.desc
niprint_dos.desc
nisd_overflow.desc
nis_server.desc
niteserver_ftp_dir_trav.desc
nmap_osfingerprint.desc
nmap_tcp_connect.desc
nmap_wrapper.desc
nntp_info.desc
nntpserver_detect.desc
no404.desc
nokia_readfile.desc
nortel_annex_default_pass.desc
nortel_baystack_default_pass.desc
nortel_cgiproc_dos.desc
nortel_passport_default_pass.desc
nortel_pwdless1.desc
nortel_pwdless2.desc
notes_detection.desc
notes_mta_dos.desc
novell_border_manager.desc
novell_groupwise_webacc_information_disclosure.desc
nph-exploitscanget.desc
nph-publish.desc
nph-test-cgi.desc
nsiislog_dll.desc
nsm_format_strings.desc
ntalk_detect.desc
nt_ftp_guest.desc
ntp_open.desc
ntp_overflow.desc
nt_spam.desc
nuked_clan_cmd_exec.desc
nuked_klan_xss.desc
nullhttpd_content_length.desc
nx_web_content_file_include.desc
oas_overflow.desc
objectserver.desc
ocean12_db_download.desc
ocean12_guestbook_xss.desc
odbc_tools_check.desc
office_files.desc
officescan_disclosure.desc
Omnihttpd_pro_source_disclosure.desc
oneorzero_flaws.desc
oops_overflow.desc
openbb_sql_injection.desc
openlink_overflow.desc
openserver_overflows.desc
openssh_231.desc
openssh_301.desc
openssh_33.desc
openssh_36.desc
openssh_37p.desc
openssh_adv_option.desc
openssh_afs.desc
openssh_channel.desc
openssh_pam_timing.desc
openssh_rev_dns_lookup_bypass.desc
openssh_uselogin.desc
openssh_uselogin_environment.desc
openssl_overflow_generic_test.desc
openssl_password_interception.desc
openwebmail_cmd_exec.desc
opera_arbitrary_file_dropping.desc
opera_heap_corruption.desc
opera_href_overflow.desc
opera_multiple_flaws.desc
oracle9i_apache_dms.desc
oracle9iAS_slashdot_DoS.desc
oracle9iAS_too_long_url.desc
oracle9i_dad_admin.desc
oracle9i_globals_dot_jsa.desc
oracle9i_java_process_manager.desc
oracle9i_jspdefaulterror.desc
oracle9i_jsp_source.desc
oracle9i_mod_plsql_config.desc
oracle9i_modplsql_css.desc
oracle9i_mod_plsql_overflow.desc
oracle9i_mod_plsql_traversal.desc
oracle9i_owautil.desc
oracle9i_portaldemo_orgchart.desc
oracle9i_soapconfig.desc
oracle9i_soapdocs.desc
oracle9i_soaprouter.desc
oracle9i_XSQLServlet_XSQLConfig.desc
oracle_dos.desc
oracle_link_overflow.desc
oracle_one_hour_install.desc
oracle_tnslsnr_security.desc
oracle_tnslsnr_version.desc
oracle_web_admin_server.desc
oracle_xsql.desc
oracle_xsql_query.desc
orange_dos.desc
oscommerce_session_id_xss.desc
osCommerce_xss.desc
os_fingerprint.desc
oshare.desc
ospf_detect.desc
osX_apache_finder_content.desc
osX_apache_finder.desc
overnet.desc
owa-anonymous.desc
owl_browse.desc
ows_bin_cgi.desc
ows_overflow.desc
pafiledb_cmd_exec.desc
pafiledb_sql_injection.desc
pafiledb_xss.desc
pagelog_cgi.desc
PagesPro_dir_trav.desc
pals_cgi.desc
pam_smb.desc
passwordless_cayman_router.desc
passwordless_hp_printer.desc
paypal_store_front_injection.desc
PC_anywhere.desc
PC_anywhere_tcp.desc
pccsmysqladm.desc
perl_browseable.desc
perl_cal.desc
perl_cgi.desc
perlIS_dll_bufferoverflow.desc
pfdipaly.desc
pftp_cleartext_passwords.desc
pftp.desc
PGPCert_DoS.desc
pgpmail.desc
pgpnet_detect.desc
phf.desc
philboard_auth_bypass.desc
philboard_db_access.desc
phonebook.desc
phorum.desc
php3_path_disclosure.desc
php_4_2_x_malformed_POST.desc
php_4_3_0.desc
php_4_3_x_safe_mode_include.desc
php4_multiple_flaws.desc
php4_path_disclosure.desc
PHPAdsNew.desc
php_apache_win32_default.desc
phpay_info_disclosure.desc
phpbb_sql_injection2.desc
phpbb_sql_injection.desc
phpcatalog_sql_injection.desc
php.desc
phpdig_code_injection.desc
php_file_upload.desc
phpgedview_multiple_flaws.desc
phpgroupware_file_include.desc
php_imap_overflow.desc
phpinfo.desc
phpix_cmd_exec.desc
phpix.desc
php_log.desc
php_mail_func_header_spoof.desc
phpMyAdmin_file_reading.desc
phpMyAdmin_multiple_flaws.desc
phpMyExplorer.desc
php_nuke_admin_cp.desc
php_nuke_bb_smilies_passwd.desc
php_nuke_galleryaddon.desc
php_nuke_installed.desc
php_nuke_opendir.desc
php_nuke_sql_debug.desc
php_overflow.desc
phpPgAdmin_file_reading.desc
php_ping_code_execution.desc
phpping_code_execution.desc
php_proxima_file_reading.desc
phprocketaddin_traversal.desc
php_safe_mode.desc
phpshop_sql_injection.desc
php_socket_iovec_alloc_overflow.desc
php_split_mime.desc
phptonuke_dir_trav.desc
phpwebsite_multiple_flaws.desc
pi3web_dos2.desc
pi3web_dos.desc
pi3web_isapi.desc
pimp.desc
ping_asp.desc
ping_host.desc
piranha.desc
platinum_ftp.desc
plusmail.desc
pmachine_code_injection.desc
pmachine_xss_and_path_disclosure.desc
pmcrash.desc
p-news_priv_escalation.desc
pnserver.desc
poc32.desc
podboard_forum_details_xss.desc
pollit.desc
pop3_overflow.desc
popper_mod.desc
poprelayd_auth.desc
popserver_detect.desc
poptop_negative_read.desc
portal_of_doom.desc
port_shell_execution.desc
poster_version_two.desc
postfix_vulns.desc
postgresql_multiple_flaws.desc
postgresql_toascii_overflow.desc
postgresql_unpassworded.desc
postnuke_info_disclosure2.desc
postnuke_info_disclosure.desc
postnuke_multiple_xss.desc
postnuke_rating_dos.desc
postnuke_sql_injection.desc
powerplay.desc
powerup_information_disclosure.desc
pptp_detect.desc
printenv.desc
processit.desc
productcart_sql_injection.desc
proftpd_1_2_0_rc2.desc
proftpd_ascii_overflow.desc
proftpd_debian.desc
proftpd_exhaust.desc
proftpd_mkdir_overflow.desc
proftpd_overflow.desc
proftpd_pgsql_insertion.desc
proftpd_pre10.desc
proftpd_pre6_exploit.desc
proxomitron_dos.desc
proxy_connect.desc
proxy_cross_site_scripting.desc
proxy_gopher.desc
proxy_port.desc
proxy_post.desc
proxy_use.desc
p-smash.desc
psunami_cmd_exec.desc
psychoblogger_sql_injection.desc
psynch_multiple_vulns.desc
ptnews_admin.desc
pwrsearch_detection.desc
PWS_DoS.desc
pxe_overflow.desc
qmtp_detect.desc
qpopper2.desc
qpopper.desc
qpopper_euidl.desc
qpopper_list.desc
qpopper_qvsnprinf_overflow.desc
quake3_dos.desc
quickstore2.desc
quickstore.desc
quicktime_admin.desc
quicktime_player_overflow.desc
quote.desc
radiate_detection.desc
radius_detect.desc
radmin_detect.desc
ramcrash.desc
raptor_detect.desc
raptor_isn.desc
RA_ssh_detect.desc
RA_www_css.desc
RA_www_detect.desc
rbs.desc
realplayer_png_heap_corruption.desc
realserver_disclosure.desc
realserverg2.desc
realserver_malformed_request_dos.desc
realserver_ussr_dos.desc
relative_field_vulnerability.desc
remote_pc_detect.desc
remwatch.desc
resin_path_disclosure.desc
resin_server_status.desc
resin_traversal.desc
rexecd.desc
rfparalyze.desc
rfpoison.desc
rh_inetd.desc
rich_media_ecommerce_stores_sensitive_information_insecurely.desc
rip_detect.desc
rip_poison.desc
rlogin.desc
rlogin_froot.desc
roads_cgi.desc
rockliffe_mailsite_overflow.desc
rot13sj.desc
rover_pop3_overflow.desc
roxen_counter.desc
roxen_percent.desc
rpc_3270.desc
rpc_alis.desc
rpc_amd.desc
rpc_automountd.desc
rpc_cmsd.desc
rpc_cmsd_overflow.desc
rpc_database.desc
rpc_dmispd.desc
rpc_etherstatd.desc
rpc_fam.desc
rpcinfo.desc
rpc_kcms.desc
rpc_keyserv.desc
rpc_llockmgr.desc
rpc_nfsd.desc
rpc_nlockmgr.desc
rpc_nsed.desc
rpc_nsemntd.desc
rpc_portmap.desc
rpc_rexd.desc
rpc_rje_mapper.desc
rpc_rquotad.desc
rpc_rstatd.desc
rpc_rusers.desc
rpc_sadmin2.desc
rpc_sadmin.desc
rpc_sched.desc
rpc_selection.desc
rpc_showfhd.desc
rpc_snmp.desc
rpc_sprayd.desc
rpc_statd.desc
rpc_statmon.desc
rpc_sunlink_mapper.desc
rpc_tfsd.desc
rpc_tooltalk.desc
rpc_tooltalk_format_string.desc
rpc_walld.desc
rpc_X25.desc
rpc_xdrmem_bytes.desc
rpc_ypbind.desc
rpc_yppasswd.desc
rpc_ypupated.desc
rpc_ypxfrd.desc
rpm_query.desc
rsh.desc
rsh_null.desc
rsh_users.desc
rsync_array_overflow.desc
rsync_heap_overflow.desc
rsync_modules.desc
rtsp_detect.desc
rusers_output.desc
rwalld_format_string.desc
rwhois_format_string2.desc
rwhois_format_string.desc
sahagent_detection.desc
samba_arbitrary_file_creation.desc
samba_frags_overflow.desc
samba_possible_overflow.desc
sambar_cgi.desc
sambar_cgi_path_disclosure.desc
sambar_default_accounts.desc
sambar_DoS.desc
sambar_info_disclosure.desc
sambar_mailit.desc
sambar_pagecount.desc
sambar_plaintext.desc
sambar_search_cgi.desc
sambar_sendmail.desc
sambar_sysadmin.desc
sambar_xss.desc
samba_tng_flaws.desc
samba_trans2open_overflow.desc
samba_unicode_overflow.desc
sapdb_detect.desc
savant_cgi_download.desc
savant_cgitest.desc
savant_content_length_DoS.desc
savant_percent_dos.desc
savenow_detection.desc
sawmill.desc
sawmill_password.desc
scozbook.desc
scriptlogic_hidden_share.desc
sdbsearch.desc
securemote.desc
securemote_info_leak.desc
sedum_dos.desc
sendmail_875_bo.desc
sendmail_bt_switch.desc
sendmail_conversion_overflow.desc
sendmail_custom_config.desc
sendmail_daemon_mode.desc
sendmail_debug.desc
sendmail_debug_leak.desc
sendmail_decode.desc
sendmail_dns_map_txt_overflow.desc
sendmail_etrn_dos.desc
sendmail_expn.desc
sendmail_forword_include.desc
sendmail_header.desc
sendmail_ident.desc
sendmail_local_overflow.desc
sendmail_long_debug.desc
sendmail_maillocal_dos.desc
sendmail_mime_overflow2.desc
sendmail_mime_overflow.desc
sendmail_parsing_redirection.desc
sendmail_prescan_overflow.desc
sendmail_queue_destruction.desc
sendmail_redirection.desc
sendmail_sun_forward.desc
sendtemp.desc
ser_missing_to_in_ack_dos.desc
ser_register_overflow.desc
servletExec_DoS.desc
servletExec_File_Reading.desc
servletExec_Path_Disclosure.desc
sfm_xss.desc
sgdynamo_path.desc
sgdynamo_xss.desc
sgi_rpc_passwd.desc
sglmerchant_information_disclosure.desc
shaft.desc
shambala_www_dos.desc
shareaza_network.desc
sharemailpro_username_identification.desc
sheerdns_traversal.desc
shells.desc
shiva_default_pass.desc
shlwapi_dll_dos.desc
SHN_discard.desc
SHN_MySQL_Privilege_Escalation.desc
SHN_Sendmail_DoublePipe.desc
shopping_cart_information_disclosure.desc
shopplus_information_disclosure.desc
shopsearch_sql_injection.desc
shoutcast_admin_cgi_overflow.desc
shoutcast_log_xss.desc
shoutcast_version.desc
ShowCode.desc
showmount.desc
shttp_detect.desc
silverstream_database.desc
silverstream_dirlisting.desc
SimpleBBS_users_disclosure.desc
simple_chat_user_disclosure.desc
simpleserverwww_dos.desc
simplewww.desc
sip_detection.desc
sip_status_server.desc
siteframe_xss.desc
sitescope_management_server.desc
sitescope_web_admin_server.desc
siteUserMod.desc
six_webboard.desc
slmail27.desc
slmail.desc
slmail_helo.desc
slmail_smtp_overflows.desc
slmail_webmail_flaws.desc
smad.desc
small_ftp_traversal.desc
smartftp_overflow.desc
smartserver_pop_overflow.desc
smb2www_cmd_exec.desc
smb2www_installed.desc
smb_accessible_shares_copyrighted_content.desc
smb_accessible_shares.desc
smb_bruteforce_pass.desc
smb_crash_winlogon.desc
smb_dom2sid.desc
smb_enum_services.desc
smb_enum_shares.desc
smb_group_account_op.desc
smb_group_admin.desc
smb_group_backup_op.desc
smb_group_domain_admin.desc
smb_group_print_op.desc
smb_group_replicator.desc
smb_groups_guest.desc
smb_group_system_op.desc
smb_host2sid.desc
smb_lanman_browse_list.desc
smb_localusers_autodisabled.desc
smb_localusers_changepw.desc
smb_localusers_disabled.desc
smb_localusers_lastpwchange.desc
smb_localusers_neverloggedon.desc
smb_localusers_pwexpiry.desc
smb_login_as_e.desc
smb_login_as_users.desc
smb_login_deloder.desc
smb_login.desc
smb_msblast.desc
smb_mssql7.desc
smb_nativelanman.desc
smb_netusergetaliases.desc
smb_netusergetgroups.desc
smb_netusergetinfo.desc
smb_netusergetinfo_local.desc
smb_nt_ms00-029.desc
smb_nt_ms00-035.desc
smb_nt_ms00-036.desc
smb_nt_ms00-047.desc
smb_nt_ms00-052.desc
smb_nt_ms00-053.desc
smb_nt_ms00-062.desc
smb_nt_ms00-065.desc
smb_nt_ms00-066.desc
smb_nt_ms00-067.desc
smb_nt_ms00-070.desc
smb_nt_ms00-086.desc
smb_nt_ms00-089.desc
smb_nt_ms00-091.desc
smb_nt_ms01-003.desc
smb_nt_ms01-008.desc
smb_nt_ms01-009.desc
smb_nt_ms01-011.desc
smb_nt_ms01-025.desc
smb_nt_ms01-046.desc
smb_nt_ms01-048.desc
smb_nt_ms02-001.desc
smb_nt_ms02-003.desc
smb_nt_ms02-005.desc
smb_nt_ms02-006.desc
smb_nt_ms02-008.desc
smb_nt_ms02-009.desc
smb_nt_ms02-013.desc
smb_nt_ms02-014.desc
smb_nt_ms02-016.desc
smb_nt_ms02-017.desc
smb_nt_ms02-018.desc
smb_nt_ms02-021.desc
smb_nt_ms02-024.desc
smb_nt_ms02-025.desc
smb_nt_ms02-026.desc
smb_nt_ms02-029.desc
smb_nt_ms02-030.desc
smb_nt_ms02-031.desc
smb_nt_ms02-032.desc
smb_nt_ms02-035.desc
smb_nt_ms02-040.desc
smb_nt_ms02-042.desc
smb_nt_ms02-045.desc
smb_nt_ms02-048.desc
smb_nt_ms02-050.desc
smb_nt_ms02-051.desc
smb_nt_ms02-052.desc
smb_nt_ms02-054.desc
smb_nt_ms02-055.desc
smb_nt_ms02-060.desc
smb_nt_ms02-063.desc
smb_nt_ms02-070.desc
smb_nt_ms02-071.desc
smb_nt_ms02-072.desc
smb_nt_ms03-001.desc
smb_nt_ms03-005.desc
smb_nt_ms03-007.desc
smb_nt_ms03-008.desc
smb_nt_ms03-009.desc
smb_nt_ms03-010.desc
smb_nt_ms03-011.desc
smb_nt_ms03-012.desc
smb_nt_ms03-013.desc
smb_nt_ms03-017.desc
smb_nt_ms03-018.desc
smb_nt_ms03-021.desc
smb_nt_ms03-023.desc
smb_nt_ms03-024.desc
smb_nt_ms03-025.desc
smb_nt_ms03-026.desc
smb_nt_ms03-027.desc
smb_nt_ms03-029.desc
smb_nt_ms03-030.desc
smb_nt_ms03-031.desc
smb_nt_ms03-035.desc
smb_nt_ms03-037.desc
smb_nt_ms03-041.desc
smb_nt_ms03-042.desc
smb_nt_ms03-043.desc
smb_nt_ms03-044.desc
smb_nt_ms03-045.desc
smb_nt_ms03-049.desc
smb_nt_ms03-050.desc
smb_nt_ms04-001.desc
smb_nt_ms04-002.desc
smb_nt_ms04-003.desc
smb_null_params_dos.desc
smb_reg_autologon.desc
smb_reg_cachedlogons.desc
smb_reg_dontshowlastusername.desc
smb_reg_hklm.desc
smb_registry_access.desc
smb_registry_full_access.desc
smb_reg_logonscreen.desc
smb_reg_missing_winreg.desc
smb_reg_MTS_access.desc
smb_reg_nodialin.desc
smb_reg_pdc.desc
smb_reg_ras_access.desc
smb_reg_run_permissions.desc
smb_reg_schedule.desc
smb_reg_service_pack.desc
smb_reg_service_pack_W2K.desc
smb_reg_service_pack_XP.desc
smb_reg_sfcdisable.desc
smb_reg_snmp_access.desc
smb_reg_trojan_paths.desc
smb_reg_winlogon_permissions.desc
smb_reg_winvnc_perms.desc
smb_scope.desc
smb_sid2localuser.desc
smb_sid2user.desc
smb_svc_alerter.desc
smb_svc_messenger.desc
smb_svc_scriptlogic.desc
smb_users_autodisabled.desc
smb_users_changepw.desc
smb_users_disabled.desc
smb_users_lastpwchange.desc
smb_users_neverloggedon.desc
smb_users_pwexpiry.desc
smb_virii.desc
smb_xp_ms01-059.desc
smc_www_dos.desc
smtp_antivirus.desc
smtp_AV_42zip_DoS.desc
smtp_bounce.desc
smtp_bypass_cisco.desc
smtp_file.desc
smtp_helo.desc
smtp_ms01-037.desc
smtp_ms02-037.desc
smtp_overflows.desc
smtp_program.desc
smtp_relay2.desc
smtp_relay.desc
smtpscan.desc
smtpserver_detect.desc
smtp_settings.desc
smtp_too_long_line.desc
snapstream_dir_trav.desc
sniff_css.desc
sniff_file_disclosure.desc
snitz_cmd_exec.desc
snitz_forums_2000_xss.desc
snmp_cisco_type.desc
snmp_default_communities.desc
snmp_detect.desc
snmp_dlink_user_pass_disclosure.desc
snmp_dos.desc
snmp_hpJetDirectEWS.desc
snmp_ifaces.desc
snmp_lanman_services.desc
snmp_lanman_shares.desc
snmp_lanman_users.desc
snmp_oversized_length_field_dos.desc
snmp_oversized_length_field_two.desc
snmp_processes.desc
snmp_sysDesc.desc
snmp_vacm.desc
snmpXdmid.desc
socks4a_hostname_overflow.desc
socks4_username_overflow.desc
socks.desc
sojourn.desc
solaris_lpd_env_cmd_exec.desc
source_routed.desc
spank.desc
spinclient.desc
spyke_flaws.desc
sql_injection.desc
sqlqhit_information_disclosure.desc
squid_dos.desc
squid_overflows.desc
squirremail_cross_site_scripting.desc
squirremail_multiple_flaws.desc
sscd_input.desc
ssh1_proto_enabled.desc
ssh3_passwd.desc
ssh_AllowedAuthentications.desc
ssh_bruteforce.desc
ssh_crc32.desc
ssh_detect.desc
ssh_dropbear.desc
ssh_forwarding.desc
ssh_insertion.desc
ssh_kerberos.desc
ssh_keygen.desc
ssh_multivulns_16122002.desc
ssh_overflow.desc
ssh_pkcs.desc
ssh_proto_version.desc
ssh_scp.desc
ssh_setsid.desc
ssl_ciphers.desc
ssltest.desc
stacheldraht.desc
statd_format_string.desc
stellardocs_path_disclosure.desc
st_ftp_traversal.desc
stockman_shopping_cart_cmd_exec.desc
stockman_shopping_cart_path_disclosure.desc
stonegate_detect.desc
store_cgi.desc
story.desc
stream.desc
stronghold.desc
stronghold_swish.desc
stun_detection.desc
subseven.desc
sun_cobalt_adaptive_firewall_detect.desc
sunftpd_overflow.desc
sunftpd_traversal.desc
sunkill.desc
sun_one_jsp_source.desc
superguestbook_config_disclosure.desc
superm_son_hserver_traversal.desc
suse_cgi_bin_sdb.desc
suse_identd.desc
swat_detect.desc
swat_guessable_usernames.desc
swc_overflow.desc
SWS_DoS.desc
sygate_remote_control.desc
synchrologic_detect.desc
synscan.desc
systat.desc
tanned_format_string.desc
tcp_chorusing.desc
tcpip_ambiguities.desc
tcp_seq.desc
teardrop.desc
technote.desc
telcondex.desc
telnet.desc
telnetserver_detect_type_nd_version.desc
TelSrv_DoS.desc
teso_telnet.desc
test-cgi.desc
testcgi_xss.desc
texis_info_disclosure.desc
texis_path_disclosure.desc
textcounter_pl.desc
textportal_default_password.desc
tfn.desc
tfs_smtp_overflow.desc
tftpd_detect.desc
tftp_grab_file.desc
theserver_cleartext.desc
thttpd_buffer_overflow.desc
thttpd_bug.desc
thttpd_ssi.desc
thttpd_virtualhost_escape.desc
timesink_detection.desc
tiny_proxy_heap_overflow.desc
tinyweb.desc
tivoli_relay_overflow.desc
TLD_wildcard.desc
tmosdos.desc
tomcat_admin.desc
tomcat_devname_DoS.desc
tomcat_directory_listing_and_file_disclosure.desc
tomcat_path_disclosure.desc
tomcat_snoop.desc
tomcat_source_exposure.desc
tomcat_status.desc
torturecgis.desc
traceroute.desc
translate_f.desc
trendmicro_emanager.desc
trillian_installed.desc
trinity.desc
trinoo.desc
tripwire_webpage.desc
trojan_horses.desc
truegalerie_admin_bypass.desc
ttawebtop.desc
ttcms_code_injection.desc
ttforum_code_injection.desc
ttl_anom.desc
ttyprompt.desc
typo3_dev_read.desc
typsoft_ftp_DoS.desc
uddi.desc
ultraseek_detect.desc
ultraseek_dos.desc
unicast_dos.desc
unknown_services.desc
unreal_game_engine.desc
upb_code_injection.desc
upload_cgi.desc
uploader_exe.desc
upload_lite_cgi.desc
uploadskrip.desc
upnp_xp.desc
upnp_xp_tcp.desc
urlscan_detect.desc
usermin_session_id.desc
ustorekeeper.desc
uw_imap_overflow.desc
uw_imap_overflow_two.desc
vbulletin_calender_command_execution.desc
vbulletin_calender_sql_injection.desc
vcatch_detection.desc
vchat_logs.desc
vftpd_overflow.desc
viewpage_file_reading.desc
view_source_cgi.desc
vignette_info_leak.desc
vignette_tcl_code_injection.desc
viralator.desc
visadmin.desc
visnetic_and_titan_ftp_traversal.desc
visualroute_server_detect.desc
vnc.desc
vnc_http.desc
vp-asp_sql_injection.desc
vpasswd_cgi.desc
vpop_input_validation.desc
vpopmail_cmd_exec.desc
vqServer_admin_detect.desc
vqServer_web_traversal.desc
vssetcookie.desc
vw_bof.desc
vxworks_ftpd.desc
vxworks_ftpdDOS.desc
w3msql_overflow.desc
wayboard.desc
web3000_detection.desc
webactive_log.desc
webadmin.desc
webalizer.desc
webcalendar_file_read.desc
webcart_cmd_exec.desc
webcart.desc
webc_cgi_installed.desc
webc_cgi_overflows.desc
webchat_code_injection.desc
web_chat_xss.desc
webdav.desc
webdav_enabled.desc
webdav_iis.desc
webdist.desc
webdriver.desc
weberp_config_file_disclosure.desc
webfind.desc
webfroot_shoutbox_file_injection.desc
webfroot_shoutbox_traversal.desc
webgais.desc
webhancer_detection.desc
weblogic_adm_servlet.desc
weblogic_casigned_cert_spoofing.desc
weblogic_cleartext_password.desc
weblogic_dotdotdos.desc
weblogic_hostname_disclosure.desc
weblogic_percent.desc
webmin.desc
webmin_session_id.desc
webmirror.desc
webnews.desc
webplus.desc
webplus_version.desc
webseal_DoS.desc
websendmail.desc
webserver4d.desc
webserver_robot.desc
webshield.desc
WebSite.desc
website_pro.desc
websitepro_overflow.desc
webspeed.desc
websphere_cache_DoS.desc
websphere_too_long_header.desc
websphere_xss.desc
webspirs_cgi.desc
webstores_browseitemdetails_sql_injection.desc
web_traversal.desc
webweaver_retr_dos.desc
webwho_pl.desc
webwiz_forum_password_disclosure.desc
webwiznews_password_disclosure.desc
wfchat_user_disclosure.desc
wftp_241_dos.desc
wftp.desc
wftp_dos.desc
whois_raw.desc
wihphoto_file_read.desc
wildtangent_detection.desc
winamp_buffer_overflow.desc
windmail.desc
windows_terminal_services.desc
wingate_denial.desc
wingate.desc
wingate_user.desc
winmessenger_installed.desc
winmx_detect2.desc
winmx_installed.desc
winnt_dns_flood.desc
winnt_pptp_dos.desc
winnuke.desc
winsatan.desc
wins_udp_flood.desc
winsyslog_dos.desc
win_trinoo.desc
wireless_sensor_detection.desc
wnn_overflow.desc
wordit_logbook.desc
wordpress_flaws.desc
worldclient_server_detection.desc
worldflash_detection.desc
worldspan_gw_DoS.desc
wrap.desc
writesrv.desc
ws4d_overflow.desc
ws4e_too_long_url.desc
wsftp_overflows.desc
wsmp3d_cmd_exec.desc
wu_ftpd_fb_realpath_offby1.desc
wu_ftpd_glob.desc
wuftpd_ls_DoS.desc
wu_ftpd_overflow.desc
wu_ftpd_pasv_format_string.desc
wu_ftpd_site_exec.desc
wu_ftpd_site_newer.desc
wwwboardpwd.desc
www_default_page.desc
www_fingerprinting.desc
www_fingerprinting_hmap.desc
www_hosting_copyrighted_material.desc
www_infinite_request_DoS.desc
www_server_name.desc
www_too_long_auth.desc
www_too_long_cookie.desc
www_too_long_header10.desc
www_too_long_header11.desc
www_too_long_header.desc
www_too_long_method.desc
www_too_long_options.desc
www_too_long_post.desc
www_too_long_url.desc
www_too_long_useragent.desc
www_too_long_version.desc
wwwwais.desc
X.desc
xdmcp.desc
xeneo_percent_DoS.desc
Xeneo_Web_Server_2.2.9.0_DoS.desc
Xerver_DoS.desc
xfs_overflow.desc
xfstt_overflow.desc
xitami_overflow.desc
xitami_POST_DoS.desc
xmail_overflow.desc
xmb_sql_injection.desc
xmb_xss.desc
xolox_installed.desc
xoops_myheader_url_xss.desc
xoops_path_disclosure.desc
xoops_xss.desc
xpressions_sql_injection.desc
xst_http_trace.desc
xtel_detect.desc
xtelw_detect.desc
xtramail_control.desc
xtramail_helo.desc
xtramail_pop_overflow.desc
xtreme_gallery_sql_injection.desc
xtux_server.desc
yabb.desc
yabbse_cmd_exec.desc
yahoo_dos.desc
yahoo_installed.desc
yahoo_msg_running.desc
yppasswdd.desc
zebra_dos.desc
zentrack_code_injection.desc
zentrack_read_files.desc
zeus.desc
zeus_web_admin_xss.desc
zml_cgi_traversal.desc
zope.desc
zope_dos.desc
zope_img_updating.desc
zope_invalid_query_path_disclosure.desc
zope_multiple_flaws.desc
zope_path_disclosure.desc
zope_zclass.desc
zyxel_pwd.desc
knoppix@box:/usr/lib/nessus/plugins/.desc$
>
>> Checking `sniffer'... eth0: PACKET SNIFFER(/sbin/dhclient[331],
/sbin/dhclient[431])
Pareil ici ? Non pardon, dhclient c 1 fichier !
Dois-je envisager de trouver promisc.... - genre apt-get promisc.... ?
après 1 bon man apt-get, indeed : )? !
>
-C'est ton client dhcp, qui a besoin du mode promisc pour fonctionner.
Donc RAS de ce coté.
Euh, c'est pas normal qu'il y en ai deux...?
Note perso : Je cherche à apprendre le nux, et/mais je bidouille P_être
? 1 peu trop facilement la partie nux de la machine...., pour laquelle
je n'ai pas (encore ? ) assez de bases pour se faire... :( !
Je vient d'1 Mdk et j'ai maintenant 1 Knoppix 3.3 installée par 1 pro
débianiste sur 1 LT Toshiba 2800-400/750 Mhz, carte réseau Netgear,
double boot : le win xp pro ( de madame :)) // et ma partie bidouille et
futur mini réseau... familial ?
> Ceci dit, pourquoi y en a-t-il deux de lancés, et surtout en as-tu
besoin ?
>
J'en sais rien, c'était comme ça à partir d'1 moment : cf
knoppix@box:/$ ifconfig -a
eth0 Lien encap:Ethernet HWaddr 00:..........78
inet adr:82.........8 Bcast:82.............5
Masque:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:8890 errors:0 dropped:0 overruns:0 frame:0
TX packets:8924 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:1000
RX bytes:6611318 (6.3 MiB) TX bytes:1079929 (1.0 MiB)
Interruption:11 Adresse de base:0x4400
eth1 Lien encap:Ethernet HWaddr 00:.........FF
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:1000
RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
lo Lien encap:Boucle locale
inet adr:127.0.0.1 Masque:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:123 errors:0 dropped:0 overruns:0 frame:0
TX packets:123 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 lg file transmission:0
RX bytes:7212 (7.0 KiB) TX bytes:7212 (7.0 KiB)
knoppix@box:/$
Note 2 : Est-ce que ça peut-être une expliction...... ?
(J'ai enlevé les adresses HW/, inet et Bcast selon le conseil d'1
collègue de la liste Déb'..., pour raison de sécurité.., rétroactives,
mais peut-être (trop) tardives :(?... et sinon, sauf connerie de ma part
! j'essaye de monter 1 vpn.... , vers des machines de récup' !
Machine privée, sans rien de très 'sensible' dessus..., en nux seulement
pour moi et pour la copine RAS ; elle ne l'utilise pas où plus...,
professionnellement !
En tout cas merci (d'avance... ? ) de vous être penché sur mon cas.....,
désespérant..... ;) ?
Mi
Reply to: