Lionel CONS <[EMAIL PROTECTED]> writes:
>
> > If it's 0.9.7 or newer, you will need to adjust the DN in the user's
> > dname file (eg, /usr/local/var/nessus/users/{username}/auth/dname),
> > replacing "/Email=" with "/emailAddress=".
>
> Wait, I have none of these. My DN in dname looks like:
> /C=CH/ST=GE/L=Geneva/O=CERN/OU=<xxx>/CN=<yyy>/M=<zzz>
> this is what nessus-adduser created.
>
> For the record, here is what's in nessus-adduser:
> echo "Please enter User Distinguished Name:"
> #
> echo $Xn "Country: $Xc"
> read x && [ -n "$x" ] && dn=$dn/C=$x
> echo $Xn "STate: $Xc"
> read x && [ -n "$x" ] && dn=$dn/ST=$x
> echo $Xn "Location: $Xc"
> read x && [ -n "$x" ] && dn=$dn/L=$x
> echo $Xn "Organization: $Xc"
> read x && [ -n "$x" ] && dn=$dn/O=$x
> echo $Xn "Organizational Unit: $Xc"
> read x && [ -n "$x" ] && dn=$dn/OU=$x
> echo $Xn "Common Name: $Xc"
> read x && [ -n "$x" ] && dn=$dn/CN=$x
> echo $Xn "e-Mail: $Xc"
> read x && [ -n "$x" ] && dn=$dn/M=$x
> [...]
> echo "$dn" > "$localstatedir/nessus/users/$login/auth/dname"
>
> Is nessus-adduser really doing the right thing?
I just had the opportunity to test it and I managed to make it work by
putting
/C=CH/ST=GE/L=Geneva/O=CERN/OU=<xxx>/CN=<yyy>/Email==<zzz>
instead of
/C=CH/ST=GE/L=Geneva/O=CERN/OU=<xxx>/CN=<yyy>/M=<zzz>
in the dname file.
It's definitely a bug in nessus-adduser. It should be fixed and it
should probably also take care of the problem of Email vs. emailAddress.
Thanks for your help,
Lionel
