[Openvas-discuss] Local security checks privileges
Juan José Pavlik Salles
jjpavlik at gmail.com
Fri Aug 17 16:39:01 CEST 2012
Thanks Thomas, that's what i needed to know. I need to limit as mush as i
can the access for this user, i've done it using DenyUsers in sshd and some
PAM time options. Is it possible to use one private key for each target i
want to scan?
2012/8/16 Thomas Reinke <lists at securityspace.com>
> Depends on the distribution/OS being checked.
> For Linux distributions, you typically need to be able to run
> uname -a
> rpm, dpkg, or have read access to certain directories.
> I'm probably missing some, but afaik, most of the LSCs can
> run with any login credential, as the above commands are
> not priviledged when used in read-only as is being done
> by the scanner.
> You can check "gather-package-list.nasl" and view the logic
> yourself there.
> On 16/08/12 08:17 PM, Juan José Pavlik Salles wrote:
> > Hi, how much privileges does the local sec check user need to run?
> > _______________________________________________
> > Openvas-discuss mailing list
> > Openvas-discuss at wald.intevation.org
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
Pavlik Juan José
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Openvas-discuss