SMB Signing Disabled

Problem On a Nessus PCI Scan SMB Signing Disabled was flagged up as a vulnerability.   Nessus Output Description Signing is not required on the remote SMB server. An unauthenticated, remote attacker can exploit this to conduct man-in-the-middle attacks against the SMB server. Solution Enforce message signing in the host's configuration. On Windows, this is Read More…

Nessus Scan Showing SSLv3 on NS Client

Problem During a Nessus scan of a network it was showing lots of insecurities with an NSClient configuarion on a windows machine we were monitoring via Nagios. OS: Windows 2016 NSClient: 0.3.x Nagios: 4.0.7   Looking at one particular issue (SSLv2 and SSLv3) showing on the report: Nessus Output: The remote service accepts connections encrypted Read More…

Telnet from Cisco UCS

Problem: Ciscco UCS was not backing up the configuration via SFTP. I wanted to check I could connect to the backup server from the UCS on port 22 (SSH)   Resolution: Execute the following commands using your desired SSH Client. I have used Putty in this example. 1) SSH to the Cisco UCS and enter Read More…