This is rather off topic, but it may be funny. A hacking challenge is running at challenge.softsysint.com The machine is a badly configured Redhat 6.2 with their protection software. I did not find much information on this tool. It looks like an active IDS: if you get caught, your IP is blacklisted for 5 minutes.
I increased the network timeout in Nessus and the plugin timeout in nessusrc and manage to run a couple of scans. I wonder what kind of modification would be necessary to get a more reliable report. http://michel.arboi.free.fr/Nessus/chall999.html is the concatenation of four reports, for pen-testers who wants to play :) -- mailto:[EMAIL PROTECTED] GPG Public keys: http://michel.arboi.free.fr/pubkey.txt http://michel.arboi.free.fr/ http://arboi.da.ru/ FAQNOPI de fr.comp.securite : http://faqnopi.da.ru/
