[OmniOS-discuss] Interesting Nessus Scan Result

Andy Fiddaman omnios at citrus-it.net
Thu Apr 20 08:58:44 UTC 2017


On Wed, 19 Apr 2017, Software Information wrote:

; Hi All
; I have my OmniOS box up and running with the latest patches and I ran
; Nessus against it to see what it would find. It showed two high
; vulnerabilities. One for RIP but disabling the routing daemon solved that
; one. I am stuck on the second one.
;
; Nessus reports "Cisco ASA Software CLI Invalid Command Invocation
; (cisco-sa-20160817-asa-cli) (EPICBANANA)"

That looks like a false positive to me. I just ran Nessus against an
OmniOS box running bloody from a week or so ago and got nothing above
info. It detected the RIP-2 daemon but didn't complain about it.
Are you running any specific compliance checks or just a standard
scan?

Andy

-- 
Citrus IT Limited | +44 (0)870 199 8000 | enquiries at citrus-it.co.uk
Rock House Farm | Green Moor | Wortley | Sheffield | S35 7DQ
Registered in England and Wales | Company number 4899123



More information about the OmniOS-discuss mailing list