Mailing List Archive

> Although Nessus CVS works as a clockwork in most situations, I just
> discovered that it locks when attacking SMB (TCP:139).
> It does not matter if the target is a Windows NT box or a Samba server
>
> Nessus 1.1.11 works well, though. The bug must have been introduced
> recently :-\
>

yes, in nessus-core/nessusd.utils.c

I have same problem, os is FREEBSD?


--
Michael Scheidell
Secnap Network Security, LLC
scheidell@secnap.net 1+(561) 368-9561
See updated IT Security News at http://www.fdma.com/

> Although Nessus CVS works as a clockwork in most situations, I just
> discovered that it locks when attacking SMB (TCP:139).
> It does not matter if the target is a Windows NT box or a Samba server
>
> Nessus 1.1.11 works well, though. The bug must have been introduced
> recently :-\
>
try this on nessus-core/nessusd/utils.c and tell me if it fixed it:
--- utils.c.CVS Thu Jan 3 11:33:17 2002
+++ utils.c Sat Jan 5 08:25:49 2002
@@ -887,8 +887,21 @@
process_alive(pid)
pid_t pid;
{
- while(waitpid(pid, NULL, WNOHANG) == EINTR);
- /* do nothing */
+ int ret;
+ int i;
+
+ /*
+ * Invalid argument
+ */
+ if(!pid)
+ return 0;
+
+ /*
+ * Second method, we attempt to use kill. But first, we
+ * wait() for the process, just in case it's a zombie.
+ */
+ for(i=0,ret=1;(i<100) && (ret > 0);i++)
+ ret = waitpid(pid, NULL, WNOHANG);

return kill(pid, 0) == 0;
}

Michael Scheidell <scheidell@secnap.net> writes:

> I have same problem, os is FREEBSD?

No, Linux. SuSE 7.2 2.4.4 or 2.4.17 kernel) and Redhat 7.2 (2.4.17)

Michael Scheidell <scheidell@secnap.net> writes:

> > Nessus 1.1.11 works well, though. The bug must have been introduced
> > recently :-\

Both patches (from HD Moore & Michael Scheidell) seem to
work: the lock is broken and the scan ends.