Adam Kosmin wrote: (...)
Kristopher Karas commented a while back on the list that Novell servers running FlexIP might have issues when scanned by Nessus. Might it be the issue in your case too?I searched the nessus plugins webpage and didn't see anything that could have launched this DoS. However, I'm concerned since I brought down a few of my Netware machines yesterday while running a non-intrusive scan (harmful plugins disabled) using "safe mode". I'm wondering if I've got a plugin installed that that tried this DoS attack but yet, doesn't have it's script_category set to either 'act_destructive_attack' or 'act_denial'
Javi
PS: His clear and specific words were: " (...) Actually, the worst offenders are JetDirect cards. A simple NMAP scan will kill several hundred of them in one sweep. Next on the list are Novell servers running FlexIP; looking at those cross-eyed will cause them to stop processing tcp/ip. (...)"
