On Wed, Sep 17, 2003 at 04:23:22PM -0400, [EMAIL PROTECTED] wrote:
> You put some ip addresses in nessus, you select 'do reverse dns'.
> The ip addresses resolve to a dns name that DOESN'T resolve. Now you are doing
> penetration tests against verisign's server since ALL unresolved names now are owned
> by verisign.
Yes, but Nessus will do its test against the initial IP. So yes, this
might become an issue for those who do manual testing at the end of the
check and who will use the resolved name, but it should not affect
Nessus in itself.
-- Renaud
