| HTTP Anti-Virus Proxy http://havp.hege.li/forum/ |
|
| HAVP and Nessus http://havp.hege.li/forum/viewtopic.php?f=3&t=317 |
Page 1 of 1 |
| Author: | pchamorro2005 [ 12 Dec 2007 17:29 ] |
| Post subject: | HAVP and Nessus |
In scanning the proxy server where I have HAVP installed using Nessus, I'm getting this vulnerability: "Usable remote proxy on any port The proxy, allows everyone to perform requests against arbitrary ports, like ... (more lines) Solution: reconfigure your proxy so that it only accepts connections against non-dangerous ports (> 1024). Risk factor : High Nessus ID : 10193" Is this vulnerability real? What solution could you suggest me to solve this issue? Only with the Nessus 3 client the warning appears, nessuswx-1.4.5 (not longer developed) doesn't shows the alert (the server is (Nessus) 3.0.5. [build 258] for Linux). Thank you, Pablo Chamorro (http://www.nessus.org/plugins/index.php ... e&id=10193) |
|
| Author: | hege [ 12 Dec 2007 17:54 ] |
| Post subject: | |
It's true that HAVP currently allows requests to any port. I might as well add some sanity checks or config to limit it. But it's not really that dangerous, all you can do is send "GET http://xxxxx/" requests somewhere. In the recommended configuration with Squid in front of HAVP, there is no problem since the checks are in Squid by default. |
|
| Page 1 of 1 | All times are UTC + 2 hours [ DST ] |
| Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |
|