Educause Security Discussion mailing list archives
Re: Checking for old web browsers and media plugins
From: Gary Flynn <flynngn () JMU EDU>
Date: Wed, 18 Feb 2009 16:54:02 -0500
Adam Carlson wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Have you tried running Nessus scans with credentials against Windows systems? When Nessus can connect to the target system's registry and is provided administrator credentials,
I did something similar for a while with the ISS scanner. Then I got nervous. What are the implications of this if the target desktop is running something like pwdump? Does it expose the Nessus administrative password hash? -- Gary Flynn Security Engineer James Madison University www.jmu.edu/computing/security
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
Current thread:
- Checking for old web browsers and media plugins Bob Bayn (Feb 18)
- <Possible follow-ups>
- Re: Checking for old web browsers and media plugins Dean De Beer (Feb 18)
- Re: Checking for old web browsers and media plugins Gary Flynn (Feb 18)
- Re: Checking for old web browsers and media plugins Adam Carlson (Feb 18)
- Re: Checking for old web browsers and media plugins Gary Flynn (Feb 18)
- Re: Checking for old web browsers and media plugins Curt Wilson (Feb 18)
- Re: Checking for old web browsers and media plugins John Ladwig (Feb 18)
- Re: Checking for old web browsers and media plugins Curt Wilson (Feb 18)
- Re: Checking for old web browsers and media plugins Adam Carlson (Feb 18)
- Re: Checking for old web browsers and media plugins Bob Bayn (Feb 20)