User manual

103
Faxes known to generate mis-identifications at Connect level of effort only:
Xerox Work Center Pro 657
Xerox DC 332 (Data copier with Fax (Super Group III) and networking addons
Potentially other Xerox Data copiers with Fax addons that use the Super Group III
protocols (as reported at one site - all their Super Group III Xerox machines generated
Mis-Identifications at Connect level of effort).
Faxes known to generate mis-identifications at all levels of effort:
Brother Fax, model unknown (Old machine)
Cannon L 770
Cannon L785
Muratec F120
Ricoh FAX2800L
Ricoh FAX4500L
10.4.2 Situations that may generate false Penetration results
Some systems or system behaviors may generate false penetration results - and may even indicate a
security risk (Systems that do not disconnect after 3 failed attempts allow hackers to continue
bruteforcing attempts).
In some instances PhoneSweep may not recognize that it has penetrated a system as it does not recognize
the system response for a successful penetration. In other instances, a system recycling back to the initial
welcome or other banner after 3 failed login attempts may generate a false penetration report. (This is a
security issue as then the system allows someone to continue in their penetration attempts during the same
call).
The best way to view PhoneSweep’s entire communication in Penetrate level of effort is to generate a
report with the Appendix A option selected.
10.4.3 Other situations that generate mis-Identifications
Some other situations, such as line noise, may generate mis-identifications. These should be looked at on
a case-by-case basis. Please see Appendix C: PhoneSweep Troubleshooting Guide for further details.