On Tue Dec 07 2004 at 10:49, Nelson, C.M. wrote: > We have found that licence managers based on FLEXlm, running on Windows > servers, can reliably be killed using Nessus.
Does this happen with "safe checks" or not? Did you identify which test killed it? The most dangerous phases against broken services are 1) port scan (especially TCP port scan) 2) SSL probes from find_service 3) generic attacks & denial of service plugins. (1) is common. You can use a SYN scanner (or a pseudo scanner like netstat) but if the process is killed by a TCP port scan, it will probably not survive connections from hundreds of Nessus plugins. (2) can be disabled if you limit SSL to "known SSL services". You can also disable it. (3) is disabled by safe_checks. However, running a fragile service is not great. _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
