Just to come back on this issue :
On Tue, Feb 05, 2002 at 06:41:26PM +0100, Renaud Deraison wrote: > I guess Mandy did not give any NT credential to Nessus (as done in the > 'Prefs.' section of the panel) while the others scanners (ISS, Retina) > were given those (through the fact that she was logged as administrator > in NT). As a result, Nessus could not dig into the remote registry to > determine wether the hotfixes were applied or not. Ok, I was right. Mandy told me she just installed Nessus, manually downloaded new scripts from http://www.nessus.org/scripts.html and ran Nessus directly, without any parameters (be it for speed[1] or whatever). So Nessus had no NT credential (at the opposite of all the competitors) and therefore could not dig into the remote registries to determine if hotfixes were applied. In addition to that, if she manually downloaded the new scripts from the page, then she installed 1.0.x scripts with an 1.1.x installation, which clearly can not do any good. Add to this that the scripts on the page are there for educational purposes, not really for installation purposes (as they are not corrected over the time)... -- Renaud [1] She could probably have obtained results twice as good just by tweaking the 'number of hosts to test at the same time' parameter, and four times as good if she did that in addition to setting up Nessus on the same box as the other scanners.
