[Openvas-discuss] Local security checks privileges

Juan José Pavlik Salles jjpavlik at gmail.com
Fri Aug 17 16:39:01 CEST 2012


Thanks Thomas, that's what i needed to know. I need to limit as mush as i
can the access for this user, i've done it using DenyUsers in sshd and some
PAM time options. Is it possible to use one private key for each target i
want to scan?

2012/8/16 Thomas Reinke <lists at securityspace.com>

> Depends on the distribution/OS being checked.
>
> For Linux distributions, you typically need to be able to run
>
>     uname -a
>     rpm, dpkg, or have read access to certain directories.
>
> I'm probably missing some, but afaik, most of the LSCs can
> run with any login credential, as the above commands are
> not priviledged when used in read-only as is being done
> by the scanner.
>
> You can check "gather-package-list.nasl" and view the logic
> yourself there.
>
> Thomas
>
> On 16/08/12 08:17 PM, Juan José Pavlik Salles wrote:
> > Hi, how much privileges does the local sec check user need to run?
> >
> >
> >
> > _______________________________________________
> > Openvas-discuss mailing list
> > Openvas-discuss at wald.intevation.org
> >
> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
>
> _______________________________________________
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
>



-- 
Pavlik Juan José
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20120817/38abb899/attachment.html>


More information about the Openvas-discuss mailing list