Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
386
Views
0
Helpful
1
Replies

VULNERABILITY SCANNING PREVENTED BY CSA

snehalshetty
Level 1
Level 1

‎09-22-2005 09:39 AM - edited ‎03-10-2019 01:39 AM

When I scan Windows XP machine with Foundstone(Mcafee) scanner,CSA is preventing the scanning attempt and logging the following message:

9/21/2005 5:03:24 PM: The process '<remote application>' (as user PC1\Admin) attempted to access the registry key '\REGISTRY\MACHINE', value ''. The attempted access was an open (operation = OPEN/KEY). The operation was denied.

When scanner tries to access registry to find out windows missing patches,CSA is blocking the attempt immediately.

We would like to modify the rule in CSA and also want to make sure it does not create any loopholes.

Please help me solve this.

Thanks.

Labels:
0 Helpful
1 Reply 1

umedryk
Level 5
Level 5

‎09-28-2005 11:24 AM

You can disable the relevant signature in your IDS for this specific host.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card