WARNING ABOUT DNS RESOLVE IN NESSUS AND VERISIGN DNS CHANGES
Renaud Deraison
deraison at nessus.org
Wed Sep 17 16:29:30 EDT 2003
On Wed, Sep 17, 2003 at 04:23:22PM -0400, scheidell at secnap.net wrote:
> You put some ip addresses in nessus, you select 'do reverse dns'.
> The ip addresses resolve to a dns name that DOESN'T resolve. Now you are doing penetration tests against verisign's server since ALL unresolved names now are owned by verisign.
Yes, but Nessus will do its test against the initial IP. So yes, this
might become an issue for those who do manual testing at the end of the
check and who will use the resolved name, but it should not affect
Nessus in itself.
-- Renaud
More information about the Nessus
mailing list