Does that mean if you use the built in SYS scan instead that it won't be able to guess what is running? Is NMAP required?
-----Original Message----- From: Michael Scheidell [mailto:[EMAIL PROTECTED] Sent: Friday, October 03, 2003 11:47 AM To: Cheryl Ammann Cc: [EMAIL PROTECTED] Subject: Re: Services on non-standard ports > I think I know the answer to this, but I need > to be sure. > > nessus detects and identifies services that are > running on non-standard ports. Is this true even > when the non-standard port is a reserved port? > Say, a web server running on a port in the 600s? yes. As long as you ran nmap and nessus knows its an open port. Prior to nessus running the tests, it looks at all open ports that were found by nmap and tries to figure out what is running on it. It then logs that info into the kb database and uses THAT info (in the kb database) to run tests. ie, all 'web servers' regardless of port are tested for web server problems. -- Michael Scheidell SECNAP Network Security, LLC Main: 561-368-9561 / www.secnap.net Looking for a career in Internet security? http://www.secnap.net/employment/ ____________________________________________________________________ Please look below this disclaimer for attachments. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. This communication may contain material protected by attorney-client privilege. If you are not the intended recipient or the person responsible for delivering the email to the intended recipient, be advised that you have received this email in error and that any use, dissemination, forwarding, printing, or copying of this email is strictly prohibited. If you have received this email in error please notify the Information Systems Manager by telephone at (715)845-3111 [EMAIL PROTECTED] http://www.wipfli.com
