|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: network audit of sendmail
From: Renaud Deraison (deraison
nessus.org)
Date: Thu Mar 06 2003 - 14:37:13 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Thu, Mar 06, 2003 at 10:41:43AM -0500, Mike Tancsa wrote:
>
> I want to go through my network to a) ensure all my machines are updated
> and b)look for customer machines running vulnerable versions of
> sendmail. I put together a quick perl script, but its sequential and does
> not scan in parallel. (this is slow for 16,000 hosts). Can anyone recommend
> a tool to do this ? Essentially all I want to do is connect to port 25,
> grab the banner and record it next to the IP address. Nessus seems to be
> way overkill and I dont see a way in nmap to record the banner
> output.
Why would Nessus be way overkill ? Disable every plugin except
the plugin which checks for the flaw [sendmail_header.nasl] (and
eventually ping_host), and here you go.
-- Renaud (blatantly defending his product :)
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]