Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Nessus>
  3. plugins
MySQL false positive
noamr at beyondsecurity
Aug 18, 2002, 3:25 AM
Post #1 of 5 (842 views)
Permalink
Hi,

Some MySQL servers have no root user, causing the following response:
Host '' is not allowed ...

Which passes through the check, causing a false positive.

This small patch will prevent this:
122,125d121
< if (!dbs)
< {
< exit(0);
< }

Thanks
Noam Rathaus
CTO
Beyond Security Ltd
http://www.SecurITeam.com
http://www.BeyondSecurity.com
Re: MySQL false positive [ In reply to ]
arboi at noos
Aug 20, 2002, 10:04 AM
Post #2 of 5 (827 views)
Permalink
"Noam Rathaus" <noamr@beyondsecurity.com> writes:

> Ohhh sorry.
> mysql_unpassworded.nasl

That's what I thought but could not find those lines.
BTW, did you try the last version (1.11, last sunday)
I added this:
57a58
> if (" is not allowed to connect to this MySQL" >< r1) exit(0);

Isn't it enough to fix the false positive?
Re: MySQL false positive [ In reply to ]
noamr at beyondsecurity
Aug 20, 2002, 10:58 AM
Post #3 of 5 (835 views)
Permalink
Hi,

Ohhh sorry.
mysql_unpassworded.nasl

Thanks
Noam Rathaus
CTO
Beyond Security Ltd
http://www.SecurITeam.com
http://www.BeyondSecurity.com
----- Original Message -----
From: "Michel Arboi" <arboi@noos.fr>
To: "Noam Rathaus" <noamr@beyondsecurity.com>
Sent: Tuesday, August 20, 2002 6:47 PM
Subject: Re: MySQL false positive


> "Noam Rathaus" <noamr@beyondsecurity.com> writes:
>
> > 122,125d121
> > < if (!dbs)
> > < {
> > < exit(0);
> > < }
>
> Which plugin??
>
Re: MySQL false positive [ In reply to ]
noamr at beyondsecurity
Aug 20, 2002, 12:06 PM
Post #4 of 5 (827 views)
Permalink
Hi,

I will need to test it, however I cannot do it right away, I will try to get
back to you.

Thanks
Noam Rathaus
CTO
Beyond Security Ltd
http://www.SecurITeam.com
http://www.BeyondSecurity.com
----- Original Message -----
From: "Michel Arboi" <arboi@noos.fr>
To: "Nessus Plugin Mailing List" <plugins-writers@list.nessus.org>
Sent: Tuesday, August 20, 2002 7:04 PM
Subject: Re: MySQL false positive


> "Noam Rathaus" <noamr@beyondsecurity.com> writes:
>
> > Ohhh sorry.
> > mysql_unpassworded.nasl
>
> That's what I thought but could not find those lines.
> BTW, did you try the last version (1.11, last sunday)
> I added this:
> 57a58
> > if (" is not allowed to connect to this MySQL" >< r1) exit(0);
>
> Isn't it enough to fix the false positive?
>
Re: MySQL false positive [ In reply to ]
noamr at beyondsecurity
Aug 20, 2002, 12:08 PM
Post #5 of 5 (828 views)
Permalink
Hi,

Sorry for the confusion, I do use the latest version of the
mysql_unpassworded.nasl with that line.

Thanks
Noam Rathaus
CTO
Beyond Security Ltd
http://www.SecurITeam.com
http://www.BeyondSecurity.com
----- Original Message -----
From: "Michel Arboi" <arboi@noos.fr>
To: "Nessus Plugin Mailing List" <plugins-writers@list.nessus.org>
Sent: Tuesday, August 20, 2002 7:04 PM
Subject: Re: MySQL false positive


> "Noam Rathaus" <noamr@beyondsecurity.com> writes:
>
> > Ohhh sorry.
> > mysql_unpassworded.nasl
>
> That's what I thought but could not find those lines.
> BTW, did you try the last version (1.11, last sunday)
> I added this:
> 57a58
> > if (" is not allowed to connect to this MySQL" >< r1) exit(0);
>
> Isn't it enough to fix the false positive?
>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal