server securing issues
- From: lolade banjo <lolade14@xxxxxxxxx>
- Date: Fri, 6 Jun 2008 08:03:13 -0700 (PDT)
Hi managers,
Hope you have not all gone for the weekend.
I have a big problem that is giving nightmares.
have done some securing on my solaris server and
still there are some ports that need to be closed
which is now proving dificult. from my attachment i
did a scan and i have a port 1521 used by oracle whic
i was told by our internet provider that it msut be
secured how do i do this is now headache, one of our
application Blackboard depends on oracle to run so
what do i do this file too filenet-nch (32770/tcp) i
do not know its meaning and hw do i close this, i
enabled ssh but stil cannot log in from remote it sats
access denied even as root i need this help am on it
right now .
i will appreciate any help
lolade
Lolade Banjo
08023036876,018776427
O__ ---- Systems Administrator
c/ /'_ --- Bb LMS
(*) \(*) --
He gives me strenght to do all things.... who Jesus
[IMAGE]
List of hosts
193.219.244.42
Low Severity problem(s) found
[^] Back
193.219.244.42
Scan time :
Start time :
Fri Jun 06 15:46:39 2008
End time :
Number of vulnerabilities :
Open ports :
3
Low :
7
Medium :
0
High :
0
------------------------------------------------------------------------
Information about the remote host :
Operating system :
Solaris 10
NetBIOS name :
(unknown)
DNS name :
(unknown)
[^] Back to 193.219.244.42
Port ssh (22/tcp)
Service detection
An SSH server is running on this port.
Nessus ID : 22964
SSH Server type and version
Synopsis :
An SSH server is listening on this port.
Description :
It is possible to obtain information about the remote SSH
server by sending an empty authentication request.
Risk factor :
None
Plugin output :
SSH version : SSH-2.0-Sun_SSH_1.1
SSH supported authentication :
gssapi-keyex,gssapi-with-mic,publickey,password,keyboard-interactive
Nessus ID : 10267
SSH protocol versions supported
Synopsis :
An SSH server is running on the remote host.
Description :
This plugin determines the versions of the SSH protocol supported by
the remote SSH daemon.
Risk factor :
None
Plugin output :
The remote SSH daemon supports the following versions of the
SSH protocol :
. 1.99
. 2.0
Nessus ID : 10881
[^] Back to 193.219.244.42
Port general/udp
Traceroute
For your information, here is the traceroute from 193.219.244.60 to
193.219.244.42 :
193.219.244.60
193.219.244.42
Nessus ID : 10287
[^] Back to 193.219.244.42
Port general/tcp
Ping the remote host
The remote host is up
Nessus ID : 10180
OS Identification
Remote operating system : Solaris 10
Confidence Level : 95
Method : SSH
The remote host is running Solaris 10
Nessus ID : 11936
[^] Back to 193.219.244.42
Port filenet-nch (32770/tcp)
[^] Back to 193.219.244.42
Port ncube-lm (1521/tcp)
Oracle detection
Synopsis :
A database is listening on the remote host.
Description :
The remote host is running Oracle, a database server. It is possible
to extract the version number of the remote installation by sending
a 'VERSION' request to the remote TNS listener.
Solution :
Restrict access to the database to allowed IPs only.
Risk factor :
None / CVSS Base Score : 0
(AV:R/AC:L/Au:NR/C:N/A:N/I:N/B:N)
Plugin output :
The remote Oracle TNS listener replies with the following version:
TNSLSNR for Solaris: Version 10.2.0.1.0 - Production
TNS for Solaris: Version 10.2.0.1.0 - Production
Unix Domain Socket IPC NT Protocol Adaptor for Solaris: Version
10.2.0.1.0 - Production
Oracle Bequeath NT Protocol Adapter for Solaris: Version 10.2.0.1.0 -
Production
TCP/IP NT Protocol Adapter for Solaris: Version 10.2.0.1.0 - Production,,
Nessus ID : 22073
_______________________________________________
sunmanagers mailing list
sunmanagers@xxxxxxxxxxxxxxx
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
- Prev by Date: server securing issues
- Next by Date: Re: Solaris ipmp setup
- Previous by thread: server securing issues
- Next by thread: UPDATE Re: Sol10u3, Kernel patch, zones on zfs, 120011-14 won't install!
- Index(es):
Relevant Pages
|
