Hi, Thanks for reporting the issue. Let me have a look at this.
Thanks, Antu Sanadi On Monday 30 April 2012 12:44 PM, [email protected] wrote:
hello, I got a complaint from a sysadmin about gb_ms_windows_smb_share_passwd_null_sec_bypass_vuln.nasl that seems go give false positives on a Win2k8 R2 with - Guest disabled - Not everyone on any share - HKLM..restrictnullsessaccess = 1 As far as I understand (not a windwos person), from Windows 2008 IPC$ is always open on a fileserver, but anonymous sessions are not allowed unless you enable this, which was not done in this case. I guess that this .nasl may need an update. regards, Torbjörn Wictorin, Uppsala univ _______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
-- Antu Sanadi | Security Research Analyst SecPod Technologies Pvt. Ltd | http://www.secpod.com/ 1354, 3rd Floor|9th Cross, 80ft Road, 33rd Main, 1st Phase, JP Nagar| Bangalore - 560078 |India
_______________________________________________ Openvas-plugins mailing list [email protected] http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
