Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Nessus>
  3. plugins
smb_sid2user.nasl
noamr at beyondsecurity
Dec 19, 2001, 1:30 PM
Post #1 of 5 (1438 views)
Permalink
Hi,

The above plugin is sometimes real slow to return due to massive amounts of
users, wouldn't it be better to make it return each user independently like
dcetest.nasl does?

Thanks
Noam Rathaus
http://www.BeyondSecurity.com
http://www.SecuriTeam.com
Re: smb_sid2user.nasl [ In reply to ]
peak at argo
Dec 19, 2001, 3:39 PM
Post #2 of 5 (1403 views)
Permalink
On Wed, 19 Dec 2001, Noam Rathaus wrote:

> The above plugin is sometimes real slow to return due to massive
> amounts of users,

I suspect the plugin in question does something wrong. First: there must
be a more efficient way to enumerate users, second: even sequential
RID probing is too slow when done by the script. Look at the rpcclient
from Samba TNG: it can enumerate all users with "enumusers" quickly and
even the brute-force scan of 200 RIDs with "lookupsids" takes no more
than a few seconds.

--Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."
Re: smb_sid2user.nasl [ In reply to ]
deraison at cvs
Dec 19, 2001, 3:52 PM
Post #3 of 5 (1397 views)
Permalink
On Wed, Dec 19, 2001 at 10:30:30PM +0200, Noam Rathaus wrote:
> Hi,
>
> The above plugin is sometimes real slow to return due to massive amounts of
> users, wouldn't it be better to make it return each user independently like
> dcetest.nasl does?

Do you use the version included in Nessus 1.0.x or 1.1.x ? Georges
Dagousset noted a problem which would make this plugin slow, and this
has been fixed.


-- Renaud
Re: smb_sid2user.nasl [ In reply to ]
peak at argo
Dec 19, 2001, 6:40 PM
Post #4 of 5 (1399 views)
Permalink
On Wed, 19 Dec 2001, Renaud Deraison wrote:

> Do you use the version included in Nessus 1.0.x or 1.1.x ? Georges
> Dagousset noted a problem which would make this plugin slow, and this
> has been fixed.

I am playing with a CVS version pulled from the 1.0 branch on
November 1. It appears to be almost identical to the current head
revision. You are right...this version is rather fast (assuming
you give it the SID in the right form, it took me quite a while to
figure out it does not expect "S-1-..." but "DOMAIN : 1-...", doh).

Anyway, there a related script that is too slow and too likely to be
killed before discovered problems are reported: smb_login_as_users.nasl.

--Pavel Kankovsky aka Peak [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."
Re: smb_sid2user.nasl [ In reply to ]
noamr at beyondsecurity
Dec 19, 2001, 11:54 PM
Post #5 of 5 (1414 views)
Permalink
Hi,

I am using version 1.1.x. And the problem isn't caused by the fact that it
is unable to gain any usernames, but rather that the loop is slow to end
before timeout occurs.

Thanks
Noam Rathaus
http://www.BeyondSecurity.com
http://www.SecuriTeam.com

----- Original Message -----
From: "Renaud Deraison" <deraison@cvs.nessus.org>
To: "Nessus Plugins Writers" <plugins-writers@list.nessus.org>
Sent: Thursday, December 20, 2001 00:52
Subject: Re: smb_sid2user.nasl


> On Wed, Dec 19, 2001 at 10:30:30PM +0200, Noam Rathaus wrote:
> > Hi,
> >
> > The above plugin is sometimes real slow to return due to massive amounts
of
> > users, wouldn't it be better to make it return each user independently
like
> > dcetest.nasl does?
>
> Do you use the version included in Nessus 1.0.x or 1.1.x ? Georges
> Dagousset noted a problem which would make this plugin slow, and this
> has been fixed.
>
>
> -- Renaud
>
>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal