Nessus Scan Report
This report gives details on hosts that were tested and issues that were found. Please follow the recommended steps and procedures to eradicate these threats.

Scan Details
Hosts which were alive and responding during test 1
Number of security holes found 0
Number of security warnings found 3


Host List
Host(s) Possible Issue
216.125.253.104 Security warning(s) found
[ return to top ]


Analysis of Host
Address of Host Port/Service Issue regarding Port
216.125.253.104 general/tcp Security warning(s) found
216.125.253.104 ssh (22/tcp) Security warning(s) found
216.125.253.104 general/udp Security notes found


Security Issues and Fixes: 216.125.253.104
Type Port Issue and Fix
Warning general/tcp
The remote host might be vulnerable to a sequence number approximation
bug, which may allow an attacker to send spoofed RST packets to the remote
host and close established connections.

This may cause problems for some dedicated services (BGP, a VPN over
TCP, etc...).

Solution : See http://www.securityfocus.com/bid/10183/solution/
Risk factor : Medium
CVE : CAN-2004-0230
BID : 10183
Other references : OSVDB:4030, IAVA:2004-A-0007
Nessus ID : 12213
Warning general/tcp
The remote host does not discard TCP SYN packets which
have the FIN flag set.

Depending on the kind of firewall you are using, an
attacker may use this flaw to bypass its rules.

See also : http://archives.neohapsis.com/archives/bugtraq/2002-10/0266.html
http://www.kb.cert.org/vuls/id/464113

Solution : Contact your vendor for a patch
Risk factor : Medium
BID : 7487
Nessus ID : 11618
Informational general/tcp The remote host is up
Nessus ID : 10180
Informational general/tcp Nessus was not able to reliably identify the remote operating system. It might be:
Linux Kernel 2.4
The fingerprint differs from these known signatures on 2 points.
If you know what operating system this host is running, please send this signature to
os-signatures@nessus.org :
:1:1:0:64:0:64:1:0:64:1:0:64:1:>64:255:0:1:1:2:1:1:1:1:0:64:5792:MSTNW:0:1:1
Nessus ID : 11936
Informational general/tcp 216.125.253.104 resolves as surt.csit.parkland.edu.
Nessus ID : 12053
Warning ssh (22/tcp)
The remote SSH daemon supports connections made
using the version 1.33 and/or 1.5 of the SSH protocol.

These protocols are not completely cryptographically
safe so they should not be used.

Solution :
If you use OpenSSH, set the option 'Protocol' to '2'
If you use SSH.com's set the option 'Ssh1Compatibility' to 'no'

Risk factor : Low
Nessus ID : 10882
Informational ssh (22/tcp) An ssh server is running on this port
Nessus ID : 10330
Informational ssh (22/tcp) Remote SSH version : SSH-1.99-OpenSSH_3.6.1p2

Remote SSH supported authentication : publickey,password,keyboard-interactive


Nessus ID : 10267
Informational ssh (22/tcp) The remote SSH daemon supports the following versions of the
SSH protocol :

. 1.33
. 1.5
. 1.99
. 2.0


SSHv1 host key fingerprint : 6d:2b:ae:41:1f:25:c8:81:4e:53:97:e5:03:7d:3d:05
SSHv2 host key fingerprint : 2d:f6:0a:10:2b:43:1f:08:ae:0a:c8:da:03:30:aa:eb

Nessus ID : 10881
Informational general/udp For your information, here is the traceroute to 216.125.253.104 :
216.125.253.133
216.125.253.104

Nessus ID : 10287
This file was generated by Nessus, the open-sourced security scanner.