nessus scaremongering?

To: debian-user@lists.debian.org
Subject: nessus scaremongering?
From: Hugh Saunders <hugh@mjr.org>
Date: Tue, 6 May 2003 03:39:50 +0100
Message-id: <[🔎] 20030506023950.GA16554@wacka.mjr.org>
Mail-followup-to: debian-user@lists.debian.org

I just apt-get installed nessus and ran it over some of the machines onmy
network. It decided that my hardware router [linksys BEFW11S4] had a
trojan called Shaft, and a windows box[xp] had back orifice.

Is it possible for a hardware router to be running a trojan? or is the
scanner getting anomolous results?

It wouldnt suprise me if someone had compromised the windows box [heh. its
a windows box :p] but i couldnt find any of the telltale back orifice
files on the windows box so im tempred to think it was another false
result by nessus.

Nessus appears to be a good tool but ive pointed it at 3 local machnies
so far and the results of two of those are questionable. Is nessus
usually reliable? have other people had false matches? Could i actually
have both these trojans?

excuse the vagueness,
thanks,

-- 
Hugh Saunders [GCv3.12] GCS d- s: a--- C+++ UL++>$ P+ L+++ E--- W-- N++
K- w-- M- V? PS-- Y PGP- t-- !5 X- R- tv-() b- DI+ D- G++ e- h++ r z?

Reply to:

Prev by Date: Re: openafs-modules-source build with kernel-heades
Next by Date: RE: jabberd
Previous by thread: grip/cdparanoia suddenly unable to open cdrom drive
Next by thread: Re: nessus scaremongering?
Index(es):
- Date
- Thread