Sounds like you are new to Nessus.
1. Install Nessus, and the windows client NessusWX (if desired, otherwise use the Xterminal version). 2. Configure a scan profile for the subnet containing your windows systems. 3. Update this profile, select the "Configure plugins" under the plugins tab. 4. Add the SMB user and SMB Password entries, this needs to be a user with "administrator" privileges, to be able to access the registry. This will scan windows and list all the vulnerabilities you asked about. Be aware: Windows XP systems have a firewall by default, and this will prevent these scans unless they have the file share enabled, or have ports 138, etc. open. Also, older Windows systems may or may not have remote registry access services active. Rgs, Robert -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of TStark Sent: Monday, June 13, 2005 10:46 AM To: [email protected] Subject: Nessus Detecting Servers without MS Patch Hello all, I have been asked to audit our servers with Nessus and find all computers that do not have MS patches which correct vulnerabilities of a remote code execution attack. How can I use Nessus, on Fedora 3, to find if a server has a particular patch or this vulnerability only? Thanks everyone for your help!! Nice to have a place to ask these questions! Tony _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
