With all the recent Windows vulnerabilities, half of them being on the client side, it's really necessary to give Nessus the proper credentials when scanning a Windows network, so that the scan can be as effective as possible. Ty Gast wrote a very nice white paper explaining how to create a dedicated domain account to enhance the Nessus scans without using the domain administrator password for it. It's at http://www.nessus.org/doc/nessus_domain_whitepaper.pdf -- Renaud Deraison The Nessus Project http://www.nessus.org
