News Server (NNTP) Anonymous Read Access

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.


Synopsis :

The remote NNTP server allows anyone to access it.

Description :

The remote NNTP server seems to be open to outsiders. Some people
like open NNTP servers as they allow one to read Usenet news articles
anonymously. Unwanted connections could waste your bandwidth.

Note that it is very common for NNTP servers to use IP-based
authentication so this may be a false positive if the Nessus scanner
is among the allowed source addresses.

Solution :

Enforce authentication or filter connections from outside.

Risk factor :

Low / CVSS Base Score : 2.6
(CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P)

Family: General

Nessus Plugin ID: 39329 ()

Bugtraq ID:

CVE ID: