LISTSERV 16.0 - LINUX-L Archives

Subscriber's Corner

Email Lists

LINUX-L Archives

LINUX-L@LISTS.UFL.EDU

View:

Message:

[

First

Last

]

By Topic:

[

First

Last

]

By Author:

[

First

Last

]

Font:

Proportional Font

		LISTSERV Archives
		LINUX-L Home
		LINUX-L 2007

Subject:

Re: Port & Vulnerability Scanning

From:

Jordan Wiens <[log in to unmask]>

Reply-To:

Platform Independent Linux List! <[log in to unmask]>

Date:

Mon, 8 Oct 2007 11:18:19 -0400

Content-Type:

text/plain

Parts/Attachments:

text/plain (30 lines)

Yes.  Pretty much any scanner is going to require administrative  
access. (I know for a fact that Nessus and ISS do, haven't tried  
Retina in a long time, but I imagine it's the same).

Of course, this being the LINUX-L list, I should point out that  
you're looking for a linux-solution in a windows-world.

You could try the run-as tool, though that has its own downsides --  
namely you have to give it admin credentials:

http://www.microsoft.com/resources/documentation/windows/xp/all/ 
proddocs/en-us/runas.mspx?mfr=true

Or, just us a full-connect scan since no raw sockets are required.

--
Jordan Wiens, CISSP
UF Network Security Engineer
(352)392-2061

On Oct 7, 2007, at 10:35 PM, Matt wrote:

> Nmap says it needs admin. privileges so it can create raw packets  
> to run certain scans such as the SYN scan. Do the other scanning  
> tools for example, ISS Internet Scanner, Nessus, and eEye Retina,  
> have the same issue? If so, is there a sudo-like mechanism in  
> Windows to run them with elevated privileges but not under an  
> admin. account? While I'm at it, any quirks with the above tools I  
> should know about?

Top of Message | Previous Page | Permalink

Search Archives

Advanced Options

Options

		Log In
		Get Password

		Search Archives

		Subscribe or Unsubscribe