severity 343487 grave tags 343487 pending confirmed sid etch reassign 343487 nessus thanks
After debugging this issue in a system that Marc Haber set up for testing I've found two different issues, one is a misconfiguration, the other is a problem with the nessus package (the client) - localhost was not allowed access to nessusd due to tcp wrappers configuration (common mistake). Error message: [ client ] [8305] SSL_connect: error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record mac nessus : SSL error [ server ] [Wed Dec 28 10:46:08 2005][7608] Connection from 127.0.0.1 rejected by libwrap - (fixing the above) the nessus client was not able to connect to the server error . Error message: [ client ] [8305] SSL_connect: error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record mac nessus : SSL error [ none at server ] I downgraded the nessus client version to 2.2.5-2 (which is *not* compiled against both 0.9.7 and 0.9.8 SSL libraries) and it worked fine. The issue should be fixed by recompiling the client against a set of the libraries, and should affect only the 2.2.5-3 version under i386. Notice, also that the package has an undeclared dependency on libssl0.9.7 (the binary is linked against that one). I will try to rebuild it in a clean environment and see if I can get rid of the libssl0.9.7 dependencies that way. Other nessus-related packages (libnasl and nessus-plugins) might need to be recompiled too. Regards Javier
signature.asc
Description: Digital signature
