From owner-freebsd-security Thu Mar 6 14:41:39 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1856137B401 for ; Thu, 6 Mar 2003 14:41:37 -0800 (PST) Received: from lava.sentex.ca (pyroxene.sentex.ca [199.212.134.18]) by mx1.FreeBSD.org (Postfix) with ESMTP id 488FB43FBF for ; Thu, 6 Mar 2003 14:41:36 -0800 (PST) (envelope-from mike@sentex.net) Received: from simian.sentex.net (simeon.sentex.ca [192.168.43.27]) by lava.sentex.ca (8.12.8/8.12.8) with ESMTP id h26MfZQp005775; Thu, 6 Mar 2003 17:41:35 -0500 (EST) (envelope-from mike@sentex.net) Message-Id: <5.2.0.9.0.20030306174416.05ea4650@marble.sentex.ca> X-Sender: mdtpop@marble.sentex.ca (Unverified) X-Mailer: QUALCOMM Windows Eudora Version 5.2.0.9 Date: Thu, 06 Mar 2003 17:45:53 -0500 To: Renaud Deraison , freebsd-security@FreeBSD.ORG From: Mike Tancsa Subject: Re: network audit of sendmail In-Reply-To: <20030306203713.GA14778@nessus.org> References: <5.2.0.9.0.20030306094902.06e759a8@marble.sentex.ca> <5.2.0.9.0.20030306094902.06e759a8@marble.sentex.ca> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-Virus-Scanned: By Sentex Communications (lava/20020517) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org At 09:37 PM 06/03/2003 +0100, Renaud Deraison wrote: >Why would Nessus be way overkill ? Disable every plugin except >the plugin which checks for the flaw [sendmail_header.nasl] (and >eventually ping_host), and here you go. > > -- Renaud (blatantly defending his product :) Its a _really great_ product and we use it for general auditing. However, the plugin does not seem to detect this particular condition very well. ---Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message