Installation guide

SMB Use Domain SID to Enumerate Users (plugin 10399) specifies the SID range to use to perform a reverse lookup

on usernames on the domain. The default setting (1000 to 1200) is recommended for most scans.

SMB Use Host SID to Enumerate Local Users (plugin 10860) specifies the SID range to use to perform a reverse

lookup on local usernames. The default setting (1000 to 1200) is recommended for most scans.

SMTP settings (plugin 11038) specify options for SMTP (Simple Mail Transport Protocol) tests that run on all devices

within the scanned domain that are running SMTP services. Nessus will attempt to relay messages through the device to

the specified “Third party domain”. If the message sent to the “Third party domain” is rejected by the address specified

in the “To address” field, the spam attempt failed. If the message is accepted, then the SMTP server was successfully

used to relay spam.

Table 32 – SMTP Settings

Option

Description

Third party domain

Nessus will attempt to send spam through each SMTP device to the address listed in

this field. This third party domain address must be outside the range of the site being

scanned or the site performing the scan. Otherwise, the test might be aborted by the

SMTP server.

From address

The test messages sent to the SMTP server(s) will appear as if they originated from

the address specified in this field.

To address

Nessus will attempt to send messages addressed to the mail recipient listed in this

field. The postmaster address is the default value since it is a valid address on most

mail servers.

SNMP settings (plugin 19762) allows you to configure Nessus to connect and authenticate to the SNMP service of the

target. During the course of scanning, Nessus will make some attempts to guess the community string and use it for

subsequent tests. If Nessus is unable to guess the community string and/or password, it may not perform a full audit

against the service.