Results 1 to 8 of 8

Thread: Nessus Scan on BT4

  1. #1
    Senior Member
    Join Date
    Feb 2009
    Posts
    153

    Default Nessus Scan on BT4

    Code:
     
    Scan time :
    
    Start time : 
    Sun May 10 09:35:27 2009
    End time : 
    Sun May 10 09:37:40 2009
    
    
    Number of vulnerabilities :
    
    Open ports : 
    2
    Low : 
    12
    Medium : 
    8
    High : 
    18
    I just did a clean install with ufw enabled and this was my log on my local ip address. Is this accurate? And if so I don't know how i am gonna fix all these lol.

  2. #2
    Just burned his ISO
    Join Date
    Apr 2009
    Posts
    14

    Default

    Quote Originally Posted by fossilk1 View Post
    Code:
     
    Scan time :
    
    Start time : 
    Sun May 10 09:35:27 2009
    End time : 
    Sun May 10 09:37:40 2009
    
    
    Number of vulnerabilities :
    
    Open ports : 
    2
    Low : 
    12
    Medium : 
    8
    High : 
    18
    I just did a clean install with ufw enabled and this was my log on my local ip address. Is this accurate? And if so I don't know how i am gonna fix all these lol.
    Hey I think you are forgetting something mate The report details... Generally bear in mind that the toolset in every backtrack distro have many tools that were not created with security in mind. I mean in security about the code of the tool itself. So the tools of backtrack may contain vulnerabilities like B.O. making it a vulnerable distro. This is expected since Backtrack was not created as a distro for your everyday need, but for making security tests.

    --three3

  3. #3
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by fossilk1 View Post
    I just did a clean install with ufw enabled and this was my log on my local ip address. Is this accurate? And if so I don't know how i am gonna fix all these lol.
    I posted an intro tutorial to using ufw here on the forums. You might wanna take a look at it.
    There are also some other guides to be found on the inturweb, and the man page. Just enabling the firewall really doesn't do much, by itself.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  4. #4
    Senior Member
    Join Date
    Feb 2009
    Posts
    153

    Default

    Quote Originally Posted by three3 View Post
    Hey I think you are forgetting something mate The report details... Generally bear in mind that the toolset in every backtrack distro have many tools that were not created with security in mind. I mean in security about the code of the tool itself. So the tools of backtrack may contain vulnerabilities like B.O. making it a vulnerable distro. This is expected since Backtrack was not created as a distro for your everyday need, but for making security tests.

    --three3
    I have seen your tutorial and have done the necessary changes to ufw but still have those vulnerabilities. I would like to make BT a distro for certain needs.

    an apt-get upgrade might fix all these open doors, but also that bug which screws up startx you also have to account for.

  5. #5
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by fossilk1 View Post
    I have seen your tutorial and have done the necessary changes to ufw but still have those vulnerabilities. I would like to make BT a distro for certain needs.

    an apt-get upgrade might fix all these open doors, but also that bug which screws up startx you also have to account for.
    Two immediate options come to mind
    One the fix-kde script on mut's blog and two use it as a live-cd it's fire and forget.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  6. #6
    Senior Member
    Join Date
    Feb 2009
    Posts
    153

    Default

    The apt-get upgrade did fix all the vulnerabilities, But WOW, such a pain in the ass to get BT4 back to normal. Everything was scrambled around, but most of the fixes were just reinstalling apps again.

    Now all High/Medium vulnerabilities are completely gone.

  7. #7
    Just burned his ISO
    Join Date
    Feb 2010
    Posts
    11

    Default

    Hi, i have a problem with my nessus on BT4.
    The install was all fine, for the server and the client.
    Now i start the server --> it is Ok
    then i start the client
    Server: localhost
    port: 4616

    and i can't connect to the Server.

    please help me

    big THX

  8. #8
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    @moonman
    Did you configure a user?

    Seems like a little RTFM would go a long way here.

    @fossilk1
    I just did a clean install with ufw enabled and this was my log on my local ip address. Is this accurate?
    With no access to or background on the system in question how would we possibly be able to answer this question?
    And if so I don't know how i am gonna fix all these lol.
    I think you need to read up on Nessus and how to use it. The report for each specific issue includes a solution.
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •