|
>> What
is the meaning of "outside_firewall = " that is setted in
>> nessusrc. > I suppose that it is a remain from an old piece of code. I could find > the string in nessus-core/doc/ntp/ntp_white_paper_11.txt only, not the > software. text: "outside_firewall: if nessusd is
testing a host which is behind a firewall"
... i try once with yes and once with no as i
recall result where differents onto the firewalled target. I thought it was
about my server, not the targeted one.
I'll try again to confirm.
> If it is between the server and the targets, you must open all
IP
> traffic between those machines (not great for a firewall) and disable > any kind of anti-flood, anti-spoof counter-measures (e.g. FW-1 smart > defenses). Otherwise, your scan will be slow and unaccurate. > Honestly, in the later case, you'd better move the server or the > firewall. Ok i guess that means "wide open server" policy
!
So to get clean and accurate result i drop of the
firewall.
But what will protect my customer data and the
server ?
Is there a strategy acceptable to balance Nessus
accuracy and Data protection ?
Yoni
|
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
