Nessus Scan Report - Columbia University

More documents

Recommendations

Info

Port smtp (25/tcp) [-/+]SMTP Server DetectionSynopsis:An SMTP server is listening on the remote port.Description:The remote host is running a mail (SMTP) server on this port. SinceSMTP servers are the targets of spammers, it is recommended youdisable it if you do not use it.Risk factor:NoneSolution:Disable this service if you do not use it, or filter incoming traffic to thisport.Plugin output:Remote SMTP server banner : 220 ctsa.cpmc.columbia.edu ESMTPSendmail 8.13.8+Sun/8.13.8; Wed, 6 Oct 2010 21:50:20 -0400 (EDT)500 5.5.1 Command unrecognized: "GET / HTTP/1.0" 500 5.5.1Command unrecognized: ""Plugin ID:10263Service DetectionAn SMTP server is running on this port.Plugin ID:22964Port remoteware-cl? (3000/tcp) [-/+]Port unknown (30000/tcp) [-/+]Port telnet (3100/tcp) [-/+]Telnet Server DetectionSynopsis:A Telnet server is listening on the remote port.Description:The remote host is running a Telnet server, a remote terminal server.Risk factor:NoneSolution:Disable this service if you do not use it.
Plugin output:Here is the banner from the remote Telnet server : ------------------------------ snip ------------------------------ Username: ------------------------------snip ------------------------------Plugin ID:10281Unencrypted Telnet ServerSynopsis:The remote Telnet server transmits traffic in cleartext.Description:The remote host is running a Telnet server over an unencryptedchannel. Using Telnet over an unencrypted channel is not recommendedas logins, passwords and commands are transferred in cleartext. Anattacker may eavesdrop on a Telnet session and obtain credentials orother sensitive information. Use of SSH is prefered nowadays as itprotects credentials from eavesdropping and can tunnel additional datastreams such as the X11 session.Risk factor:LowCVSS Base Score:2.6CVSS2#AV:N/AC:H/Au:N/C:P/I:N/A:NSolution:Disable this service and use SSH instead.Plugin ID:42263Service DetectionA telnet server is running on this port.Plugin ID:22964Port rpc-fmproduct (32771/tcp) [-/+]RPC Services EnumerationSynopsis:An ONC RPC service is running on the remote host.Description:By sending a DUMP request to the portmapper, it was possible toenumerate the ONC RPC services running on the remote port. Using thisinformation, it is possible to connect and bind to each service by sendingan RPC request to the remote port.
Page 1 and 2: List of hosts156.111.5.207156.111.5
Page 3 and 4: Synopsis:An ONC RPC service is runn
Page 5 and 6: Address: reidar@columbia.edu Issuer
Page 7 and 8: SNMP Request Network Interfaces Enu
Page 9 and 10: SUNWvldu SUNWaclg SUNWvolr SUNWgnom
Page 11 and 12: SUNWefcu SUNWerid SUNWcpdas SUNWeuo
Page 13 and 14: devel SUNWjws2 SUNWgnome-config-dev
Page 15 and 16: SUNWkbreg SUNWsbreg SUNWcupdatemgru
Page 17 and 18: Plugin output:Nessus has negotiated
Page 19 and 20: Synopsis:An ONC RPC service is runn
Page 21 and 22: server to ensure sensitive content
Page 23: Synopsis:A Telnet server is listeni
Page 27 and 28: Risk factor:NoneSolution:n/aPlugin
Page 29 and 30: NoneSolution:n/aPlugin output:The f
Page 31 and 32: NoneSolution:n/aPlugin output:The f
Page 33 and 34: Synopsis:An SMB server is running o
Page 35 and 36: The remote service is an X Window F
Page 37 and 38: Service DetectionA finger daemon is
Page 39: it is set up with stunnel to encryp

Nessus Scan Report - Columbia University

Create successful ePaper yourself

Delete template?

Save as template?