Hi guys,
this time it's happening something quite strange... I ran my usual configuration to a range of 8 IPs, over the Internet. I don't remind having changed any scan options, nor plugins (I may also have forgotten to upgrade them... :-( ) So, I only changed my target from my last scan, leaving the rest alone. The problem is: usually, it takes 4 - 6 hours to get through. Now, my scan has been running for three days ant it's not over yet! I suspect there could be some kind of honeypot at my target's site...
Anybody every met such issue?
If you first scan was directed towards a site that returns RST for closed ports and your second was directed towards a site that does not do so that might the reason you are seeing such a big difference in scanning times.
Scanning through firewalls, as you might already known, takes different times depending on the options set for the scanning engine. If you are using nmap, be sure to tweak the number of ports to scan, timeout and speed accordingly.
It's not necesarily a honeypot, but I wouldn't dismiss that either.
Regards
Javi
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
