[Nessus 3.2.1] adduser rules issue
I am running Nessus 3.2.1 daemon (the 7-day delay version) on "Linux".
The client is installed on Windows XP & version 3.2.1.
I added a user (this user is not a Linux system user) using
nessus-adduser(8) - I only want this user to be able to scan the
machine he connects from. So I added rules "accept client_ip" and
"default deny", ^D. But this is not working. When this user logs on
from the Windows client machine he can scan any host or subnet he
wants.
I have looked on the server -
/opt/nessus/var/nessus/users/user_name/auth/rules file - and it has
two entries: accept client_ip and default deny.
Is there something I am doing wrong?
Any help would be much appreciated. Thanks.
|