-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> On Wed, Dec 17, 2003 at 03:48:40PM +0000, Mark Watts wrote: > > I've created a user/certificate now and put the .pem files in ~/nessus/ > > for my user. I ran nessus once from the console (as my user) to generate > > a .nessusrc file and then added the three settings you mentioned at the > > beginning of this thread. > > > > When I run nessus now, I have to enter a password. If I use something > > random, I get some dialogues about ssl certificates (which is promising) > > however I then get a 'Login failed' message. (Argh!) > > I made a slight mistake before in step 3b -- the client config file > expects the parameter trusted_ca rather than ca_file to point to the > CA's certificate. If that doesn't fix the problem, give me some idea > what those dialogues say. Heh - I deleted that thinking it wasn't needed :) > The nessus client will always prompt for a password / passphrase. If > you're using pubkey auth, it will use it to decrypt your private key > only if it needs to. In one of my earlier messages, I told you how to > encrypt the private keys using the openssl rsa command. If you did > that, you should enter the passphrase as your password; otherwise, any > non-null string should work. I vaguely recall a co-worker mentioning this... I decided not to encrypt for now, on the basis that I want to get it working before I clamp it down. I've changed th ca_file back to trusted_ca and I've tried it set to both servercert.pem and cacert.pem (I assume its the latter?) Regardless how I set these, when I start nessus (as my user) and give it the correct username in the login page; any non-null password gets me a simple dialog saying "Login Failed". I get no debugging info on the console. Cheers, Mark. - -- Mark Watts Senior Systems Engineer QinetiQ TIM St Andrews Road, Malvern GPG Public Key ID: 455420ED -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/4IURBn4EFUVUIO0RAvxlAJwIUn2I/hcZXVFdxnCzIBeENDQVIgCeLs1h SrY1PgNJguDoOx3dQkq5UAo= =34c6 -----END PGP SIGNATURE----- _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
