*

Nessus:結果ログcsv

公開日: : Ubuntu

Plugin ID,CVE,CVSS,Risk,Host,Protocol,Port,Name,Synopsis,Description,Solution,See Also,Plugin Output
“10114”,”CVE-1999-0524″,””,”None”,”192.168.20.20″,”icmp”,”0″,”ICMP Timestamp Request Remote Date Disclosure”,”It is possible to determine the exact time set on the remote host.”,”The remote host answers to an ICMP timestamp request. This allows an
attacker to know the date that is set on the targeted machine, which
may assist an unauthenticated, remote attacker in defeating time-based
authentication protocols.

Timestamps returned from machines running Windows Vista / 7 / 2008 /
2008 R2 are deliberately incorrect, but usually within 1000 seconds of
the actual system time.”,”Filter out the ICMP timestamp requests (13), and the outgoing ICMP
timestamp replies (14).”,””,”The remote clock is synchronized with the local clock.

“10267”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”SSH Server Type and Version Information”,”An SSH server is listening on this port.”,”It is possible to obtain information about the remote SSH
server by sending an empty authentication request.”,”n/a”,””,”
SSH version : SSH-2.0-OpenSSH_5.3
SSH supported authentication : publickey,gssapi-keyex,gssapi-with-mic,password

“10287”,””,””,”None”,”192.168.20.20″,”udp”,”0″,”Traceroute Information”,”It was possible to obtain traceroute information.”,”Makes a traceroute to the remote host.”,”n/a”,””,”For your information, here is the traceroute from 192.168.20.50 to 192.168.20.20 :
192.168.20.50
192.168.20.20

“10719”,””,””,”None”,”192.168.20.20″,”tcp”,”3306″,”MySQL Server Detection”,”A database server is listening on the remote port.”,”The remote host is running MySQL, an open source database server.”,”n/a”,””,”
Version : 5.1.73
Protocol : 10
Server Status : SERVER_STATUS_AUTOCOMMIT
Server Capabilities :
CLIENT_LONG_PASSWORD (new more secure passwords)
CLIENT_FOUND_ROWS (Found instead of affected rows)
CLIENT_LONG_FLAG (Get all column flags)
CLIENT_CONNECT_WITH_DB (One can specify db on connect)
CLIENT_NO_SCHEMA (Don’t allow database.table.column)
CLIENT_COMPRESS (Can use compression protocol)
CLIENT_ODBC (ODBC client)
CLIENT_LOCAL_FILES (Can use LOAD DATA LOCAL)
CLIENT_IGNORE_SPACE (Ignore spaces before “”(“”
CLIENT_PROTOCOL_41 (New 4.1 protocol)
CLIENT_INTERACTIVE (This is an interactive client)
CLIENT_SIGPIPE (IGNORE sigpipes)
CLIENT_TRANSACTIONS (Client knows about transactions)
CLIENT_RESERVED (Old flag for 4.1 protocol)
CLIENT_SECURE_CONNECTION (New 4.1 authentication)

“10881”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”SSH Protocol Versions Supported”,”A SSH server is running on the remote host.”,”This plugin determines the versions of the SSH protocol supported by
the remote SSH daemon.”,”n/a”,””,”The remote SSH daemon supports the following versions of the
SSH protocol :

– 1.99
– 2.0

SSHv2 host key fingerprint : b4:1c:27:f1:7c:30:7e:c9:37:50:90:30:32:dc:46:ac

“11153”,””,””,”None”,”192.168.20.20″,”tcp”,”3306″,”Service Detection (HELP Request)”,”The remote service could be identified.”,”It was possible to identify the remote service by its banner or by
looking at the error message it sends when it receives a ‘HELP’
request.”,”n/a”,””,”A MySQL server is running on this port.”
“11219”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”Nessus SYN scanner”,”It is possible to determine which TCP ports are open.”,”This plugin is a SYN ‘half-open’ port scanner. It shall be reasonably
quick even against a firewalled target.

Note that SYN scans are less intrusive than TCP (full connect) scans
against broken services, but they might cause problems for less robust
firewalls and also leave unclosed connections on the remote target, if
the network is loaded.”,”Protect your target with an IP filter.”,””,”Port 22/tcp was found to be open”
“11219”,””,””,”None”,”192.168.20.20″,”tcp”,”3306″,”Nessus SYN scanner”,”It is possible to determine which TCP ports are open.”,”This plugin is a SYN ‘half-open’ port scanner. It shall be reasonably
quick even against a firewalled target.

Note that SYN scans are less intrusive than TCP (full connect) scans
against broken services, but they might cause problems for less robust
firewalls and also leave unclosed connections on the remote target, if
the network is loaded.”,”Protect your target with an IP filter.”,””,”Port 3306/tcp was found to be open”
“19506”,””,””,”None”,”192.168.20.20″,”tcp”,”0″,”Nessus Scan Information”,”Information about the Nessus scan.”,”This script displays, for each tested host, information about the
scan itself :

– The version of the plugin set
– The type of scanner (Nessus or Nessus Home)
– The version of the Nessus Engine
– The port scanner(s) used
– The port range scanned
– Whether credentialed or third-party patch management
checks are possible
– The date of the scan
– The duration of the scan
– The number of hosts scanned in parallel
– The number of checks done in parallel”,”n/a”,””,”Information about this scan :

Nessus version : 5.2.1 (Nessus 6.1.0 is available – consider upgrading)

Plugin feed version : 201412060215
Scanner edition used : Nessus Home
Scan policy used : Network Scan-centos
Scanner IP : 192.168.20.50
Port scanner(s) : nessus_syn_scanner
Port range : default
Thorough tests : no
Experimental tests : no
Paranoia level : 1
Report Verbosity : 1
Safe checks : yes
Optimize the test : yes
Credentialed checks : no
Patch management checks : None
CGI scanning : disabled
Web application tests : disabled
Max hosts : 80
Max checks : 5
Recv timeout : 5
Backports : Detected
Allow post-scan editing: Yes
Scan Start Date : 2014/12/6 22:58
Scan duration : 224 sec

“22964”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”Service Detection”,”The remote service could be identified.”,”It was possible to identify the remote service by its banner or by
looking at the error message it sends when it receives an HTTP
request.”,”n/a”,””,”An SSH server is running on this port.”
“25220”,””,””,”None”,”192.168.20.20″,”tcp”,”0″,”TCP/IP Timestamps Supported”,”The remote service implements TCP timestamps.”,”The remote host implements TCP timestamps, as defined by RFC1323. A
side effect of this feature is that the uptime of the remote host can
sometimes be computed.”,”n/a”,”http://www.ietf.org/rfc/rfc1323.txt”,””
“35716”,””,””,”None”,”192.168.20.20″,”tcp”,”0″,”Ethernet Card Manufacturer Detection”,”The manufacturer can be deduced from the Ethernet OUI.”,”Each ethernet MAC address starts with a 24-bit ‘Organizationally
Unique Identifier’.
These OUI are registered by IEEE.”,”n/a”,”http://standards.ieee.org/faqs/OUI.html
http://standards.ieee.org/regauth/oui/index.shtml”,”
The following card manufacturers were identified :

c8:60:00:85:d1:7c : ASUSTek COMPUTER INC.

“39520”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”Backported Security Patch Detection (SSH)”,”Security patches are backported.”,”Security patches may have been ‘backported’ to the remote SSH server
without changing its version number.

Banner-based checks have been disabled to avoid false positives.

Note that this test is informational only and does not denote any
security problem.”,”n/a”,”http://www.nessus.org/u?d636c8c7″,”
Give Nessus credentials to perform local checks.

“45590”,””,””,”None”,”192.168.20.20″,”tcp”,”0″,”Common Platform Enumeration (CPE)”,”It is possible to enumerate CPE names that matched on the remote
system.”,”By using information obtained from a Nessus scan, this plugin reports
CPE (Common Platform Enumeration) matches for various hardware and
software products found on a host.

Note that if an official CPE is not available for the product, this
plugin computes the best possible CPE based on the information available
from the scan.”,”n/a”,”http://cpe.mitre.org/”,”
Following application CPE’s matched on the remote system :

cpe:/a:mysql:mysql:5.1.73
cpe:/a:openbsd:openssh:5.3 -> OpenBSD OpenSSH 5.3

“70657”,””,””,”None”,”192.168.20.20″,”tcp”,”22″,”SSH Algorithms and Languages Supported”,”An SSH server is listening on this port.”,”This script detects which algorithms and languages are supported by
the remote service for encrypting communications.”,”n/a”,””,”
Nessus negotiated the following encryption algorithm with the server : aes128-cbc

The server supports the following options for kex_algorithms :

diffie-hellman-group-exchange-sha1
diffie-hellman-group-exchange-sha256
diffie-hellman-group1-sha1
diffie-hellman-group14-sha1

The server supports the following options for server_host_key_algorithms :

ssh-dss
ssh-rsa

The server supports the following options for encryption_algorithms_client_to_server :

3des-cbc
aes128-cbc
aes128-ctr
aes192-cbc
aes192-ctr
aes256-cbc
aes256-ctr
arcfour
arcfour128
arcfour256
blowfish-cbc
cast128-cbc
rijndael-cbc@lysator.liu.se

The server supports the following options for encryption_algorithms_server_to_client :

3des-cbc
aes128-cbc
aes128-ctr
aes192-cbc
aes192-ctr
aes256-cbc
aes256-ctr
arcfour
arcfour128
arcfour256
blowfish-cbc
cast128-cbc
rijndael-cbc@lysator.liu.se

The server supports the following options for mac_algorithms_client_to_server :

hmac-md5
hmac-md5-96
hmac-ripemd160
hmac-ripemd160@openssh.com
hmac-sha1
hmac-sha1-96
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com

The server supports the following options for mac_algorithms_server_to_client :

hmac-md5
hmac-md5-96
hmac-ripemd160
hmac-ripemd160@openssh.com
hmac-sha1
hmac-sha1-96
hmac-sha2-256
hmac-sha2-512
umac-64@openssh.com

The server supports the following options for compression_algorithms_client_to_server :

none
zlib@openssh.com

The server supports the following options for compression_algorithms_server_to_client :

none
zlib@openssh.com

“70658”,”CVE-2008-5161″,”2.6″,”Low”,”192.168.20.20″,”tcp”,”22″,”SSH Server CBC Mode Ciphers Enabled”,”The SSH server is configured to use Cipher Block Chaining.”,”The SSH server is configured to support Cipher Block Chaining (CBC)
encryption. This may allow an attacker to recover the plaintext message
from the ciphertext.

Note that this plugin only checks for the options of the SSH server and
does not check for vulnerable software versions.”,”Contact the vendor or consult product documentation to disable CBC mode
cipher encryption, and enable CTR or GCM cipher mode encryption.”,””,”
The following client-to-server Cipher Block Chaining (CBC) algorithms
are supported :

3des-cbc
aes128-cbc
aes192-cbc
aes256-cbc
blowfish-cbc
cast128-cbc
rijndael-cbc@lysator.liu.se

The following server-to-client Cipher Block Chaining (CBC) algorithms
are supported :

3des-cbc
aes128-cbc
aes192-cbc
aes256-cbc
blowfish-cbc
cast128-cbc
rijndael-cbc@lysator.liu.se

“71049”,””,”2.6″,”Low”,”192.168.20.20″,”tcp”,”22″,”SSH Weak MAC Algorithms Enabled”,”SSH is configured to allow MD5 and 96-bit MAC algorithms.”,”The SSH server is configured to allow either MD5 or 96-bit MAC
algorithms, both of which are considered weak.

Note that this plugin only checks for the options of the SSH server
and does not check for vulnerable software versions.”,”Contact the vendor or consult product documentation to disable MD5 and
96-bit MAC algorithms.”,””,”
The following client-to-server Message Authentication Code (MAC) algorithms
are supported :

hmac-md5
hmac-md5-96
hmac-sha1-96

The following server-to-client Message Authentication Code (MAC) algorithms
are supported :

hmac-md5
hmac-md5-96
hmac-sha1-96

admax_area



関連記事

no image

Nessus インストール

ubuntu12.10 バージョン確認 cat /etc/lsb-release アー

記事を読む

no image

ディスプレイの不具合かなにか

ubunntu12.10おかしい ディスプレイの解像度を勝手に変更する。 そのディスプレ

記事を読む

no image

インストール時に困ったとき集

apt-get install で「Not Found」となる現象への対処(Ubuntu)  

記事を読む

no image

Ubuntu 12.10 ファイアーウォールを有効にしてみる

http://ubuntuapps.blog67.fc2.com/blog-entry-446.ht

記事を読む

no image

nmap:使う

ubuntu12.10 nmap6.47 ###コマンド例###############

記事を読む

no image

mysqlとaccess – 01mysql設定

ubuntuに mysql-server 5.5.28-0 ubuntu0.12.10.2 をインス

記事を読む

no image

Ubuntu:動画みてるときにFlashのローカルストレージがうんたらと表示が出てそれが消えないとき

なぜかクリックしても消えないときは 以下から設定できる ブラウザはFirefox

記事を読む

no image

mysqlとaccess – 02

#テーブルへ外部データを取り込む 文字コードは設定ファイルでutf8に変更したけどうまくいって

記事を読む

no image

Nessus:画面

記事を読む

no image

Nessus:結果ログhtml

Nessus Scan Report UL.ulist {padding: 0 10px;

記事を読む

admax_area



Message

メールアドレスが公開されることはありません。 * が付いている欄は必須項目です

CAPTCHA


日本語が含まれない投稿は無視されますのでご注意ください。(スパム対策)

admax_area



PAGE TOP ↑