|
Penetration Testing
mailing list archives
Re: Assessing a machine with 2 NICs
From: Andres Riancho <andres.riancho () gmail com>
Date: Sun, 11 Sep 2005 18:31:47 -0300
barcajax () gmail com wrote:
Lets say we have a machine running critical business applications connected to the enterprise network on 2 NICs. From an assessment/audit point of view, is it necessary to scan both NICs using assessment tools like NMap and Nessus?
Yes, of course you have to. Some daemons listen only on the specified
IP's/interfaces while others listen on "0.0.0.0" ( all ). If you scan
only eth0 and there is a daemon that only listens on eth1's IP you are
missing services that could lead to a security breach.
Will both scan results produce the same findings (as in same ports and services open)?
No, read above.
Does the OS or applications influence the detection of ports/services on different NICs on the same physical machine?
OS wont make a diference here, just application configuration.
--
Andrés Riancho
http://www.securearg.net/
Secure from the Source
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
 By Date 
By Thread
Current thread:
|
Intro
