HTTP Server Basic Authentication Detection

Medium Nessus Network Monitor Plugin ID 4225

Synopsis

The remote host passes information across the network in an insecure manner.

Description

The remote server requires authentication for certain resources. However, the server does not require a strong encryption of the passed credentials. Specifically, the server allows clients to send credentials using HTTP Basic authentication. The client credentials are passed in plaintext and slightly obfuscated by using base64 encoding. Such encoding is trivial and a passive attacker with the ability to sniff the traffic can easily gain access to a user's credentials.

Solution

Use SSL or a stronger authentication mechanism.

Plugin Details

Severity: Medium

ID: 4225

File Name: 4225.prm

Family: Web Servers

Published: 2007/10/04

Modified: 2016/01/15

Dependencies: 1442

Risk Information

Risk Factor: Medium