Hi,
I'm a Nessus newbie, so please excuse my ignorance
I just downloaded the PCI Plug-ins, and got the following error / output on my scan
>>>>>>>>>>>>>>>>>>>
PCI DSS compliance: tests requirements
Synopsis :
Nessus is not properly configured for PCI DSS validation.
Description :
The scan settings did not fulfill the PCI DSS scan validation
requirements. Even if the technical tests passed, this report
may be insufficient to certify this server.
Plugin output :
+ A full TCP scan is required
+ A full UDP scan is required
>>>>>>>>>>>>>>>>>>>
So, in reviewing the documentation, it seems that the place to "configure" this is in Edit Policy -> Options -> Port Scanner range. I've changed the settings on my client from default to 0-65535; that should have all my bases covered. Obviously, I missing something somewhere that's probably extremely trivial, but after re-reading the normal and advanced user guides and searching the knowledge base, I can't find any other mention of such a setting.
Any ideas?
-Charles
This message is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivery of the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by telephone at 630-344-1586.
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
I'm a Nessus newbie, so please excuse my ignorance
I just downloaded the PCI Plug-ins, and got the following error / output on my scan
>>>>>>>>>>>>>>>>>>>
PCI DSS compliance: tests requirements
Synopsis :
Nessus is not properly configured for PCI DSS validation.
Description :
The scan settings did not fulfill the PCI DSS scan validation
requirements. Even if the technical tests passed, this report
may be insufficient to certify this server.
Plugin output :
+ A full TCP scan is required
+ A full UDP scan is required
>>>>>>>>>>>>>>>>>>>
So, in reviewing the documentation, it seems that the place to "configure" this is in Edit Policy -> Options -> Port Scanner range. I've changed the settings on my client from default to 0-65535; that should have all my bases covered. Obviously, I missing something somewhere that's probably extremely trivial, but after re-reading the normal and advanced user guides and searching the knowledge base, I can't find any other mention of such a setting.
Any ideas?
-Charles
This message is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivery of the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify us immediately by telephone at 630-344-1586.
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus