Le 11/06/2002 a 16:46 +0200 , Renaud Deraison ecrivait : > What do you have in /usr/local/var/nessus/users/xavier/auth/ ?
[xavier@localhost:~]$ sudo ls -lR /sw/var/nessus/users/xavier total 0 drwx------ 5 root admin 126 Jun 11 16:56 auth drwx------ 2 root admin 24 Jun 11 16:25 plugins /sw/var/nessus/users/xavier/auth: total 16 -rw------- 1 root admin 66 Jun 11 16:25 hash -rw------- 1 root admin 0 Jun 11 16:25 rules /sw/var/nessus/users/xavier/plugins: total 0 > In Nessus 1.2.2, the password is stored as a (salted) MD5 hash if > md5sum or openssl is installed somewhere. > > I think that what you're experiencing is that nessus-adduser uses the > MD5 hash, whereas nessusd does not, as your nessusd is not linked > against openssl (bad thing, by the way). I know, Fink port woks this way, don't know why.... > Try to do the following : > > echo "yourpassword" > /usr/local/var/nessus/users/xaviers/auth/password > > And try to log in again. [Tue Jun 11 16:56:12 2002][16093] nessusd 1.2.1 is starting up [Tue Jun 11 16:56:49 2002][16103] nessusd 1.2.1 started [Tue Jun 11 16:58:31 2002][16103] connection from 127.0.0.1 [Tue Jun 11 16:58:31 2002][16109] Client requested protocol version 12. [Tue Jun 11 16:58:31 2002][16109] bad login attempt from 127.0.0.1 Idem .... Thanks, -- Xavier HUMBERT - Systemes et Reseaux | [EMAIL PROTECTED] INJEP | [EMAIL PROTECTED]
