Redhat 8 Default Scan

Nessus Scan Report

Redhat 8 Default Install

Nessus 1.2.5 was used to scan Redhat 8 default install. No changes were made to the OS after installation and the firewall default settings were allowed.

November 1, 2002

Nessus Scan Report

This report gives details on hosts that were tested and issues that were found. Please follow the recommended steps and procedures to eradicate these threats.

Scan Details
Hosts which where alive and responding during test	1
Number of security holes found	0
Number of security warnings found	1

Host List
Host(s)	Possible Issue
xxx.xxx.xxx.xxx	Security warning(s) found

Analysis of Host
Address of Host	Port/Service	Issue regarding Port
xxx.xxx.xxx.xxx	ftp (21/tcp)	Security notes found
xxx.xxx.xxx.xxx	general/icmp	Security warning(s) found
xxx.xxx.xxx.xxx	general/udp	Security notes found

Security Issues and Fixes: xxx.xxx.xxx.xxx
Type	Port	Issue and Fix
Informational	ftp (21/tcp)	ftp_bounce_scan.nes could not be executed since the remote FTP server does not allow bounce scans (which is a good thing) CVE : CVE-1999-0017
Warning	general/icmp	The remote host answers to an ICMP timestamp request. This allows an attacker to know the date which is set on your machine. This may help him to defeat all your time based authentication protocols. Solution : filter out the ICMP timestamp requests (13), and the outgoing ICMP timestamp replies (14). Risk factor : Low CVE : CAN-1999-0524
Informational	general/udp	For your information, here is the traceroute to xxx.xxx.xxx.xxx : xxx.xxx.xxx.xxx

This file was generated by Nessus, the open-sourced security scanner.