I hope I don't get in too much trouble if I submit the symptoms rather than a diff fixing the problem. Nessus 1.2.6 on RedHat 7.2, script "$Revision: 1.3 $".
When running a safe check against a DYNIX/ptx 4.4.2 system, the nortel_passport_default_pass.nasl script returns 11 false positives for each of the user/pass combinations where the user and pass are the same. The logic in the script makes sense to me, but doesn't work in practice. The script should see another "Login" prompt meaning the login attempt failed, but it doesn't seem to. Here is a log of a manual telnet session where I tried one of the default users and passwords: DYNIX/ptx(R) V4.4.2 Login: rw Password: Login incorrect Login: rw Password: Login incorrect Login: So I'm not sure where the problem is, maybe more experienced heads will see the problem. I've also attached a sample "tcpdump -nlvvvX" for a single attempt. Regards, Owen Crow Systems Programmer (Unix) BMC Software, Inc. (speaking for myself only) <<maxwell.log>>
maxwell.log
Description: Binary data
