I think this report is not acurate. It said nessus cannot detect old SSH versions and it is not true.
-----Mensaje original-----
De: Michael Scheidell [mailto:[EMAIL PROTECTED]]
Enviado el: martes, 04 de marzo de 2003 14:38
Para: Javier Fernandez-Sanguino
CC: [EMAIL PROTECTED]
Asunto: Re: Nessus featured in InfoSecurity Magazine
> http://www.infosecuritymag.com/2003/mar/cover.shtml
>
> It's unfortunate to see that there are wrong statements in the article
> such as: (when talking of plugin updates)
> "Nessus' vulnerability database is updated regularly, but you have to go
> to the Web site."
Lots of things missing in the report, and , well wrong.
But, its a start.
Also, I find this amusing, not for its humor value, but it tells us
that they had unknown/undocumented vulnerabilities in several servers.
Nessus gets our vote for "Most Unsafe Program to Have on Your Network." We
not only crashed servers and clients consistently with Nessus; we even
confused our GPS-based NTP server enough that it had to be re-FLASHed with
new firmware.
--
Michael Scheidell, CEO
SECNAP Network Security, LLC
Sales: 866-SECNAPNET / (1-866-732-6276)
Main: 561-368-9561 / www.secnap.net
Looking for a career in Internet security?
http://www.secnap.net/employment/
