Menu
▾
▴
Re: [webmin-l] Nessus finds remote Webmin web server vulnerabilities
|
From: Alan D. <We...@Om...> - 2005-10-08 14:22:37
|
Since we're discussing Nessus, here's some recent news posted to the NMap mailing list about its future: http://seclists.org/lists/nmap-hackers/2005/Oct-Dec/0000.html Alan On 10/8/2005 11:56 PM, Jamie Cameron wrote: > Hi Georgi, > Nessus has always reported a bunch of incorrect vulnerabilities when scanning Webmin. To my understanding, it assumes that because Webmin does not respond with a normal HTTP error to certain requests that it uses to check for vulnerabilties, that those vulnerabilties exist. > > In reality, Webmin doesn't have any of the security problems that nessus reports - they are all only relevant to other programs. > > - Jamie |
