构建Nessus
漏洞检测系统<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />

Nessus
系统提供较为完整的弱点扫描服务。括客户端和服务端两部分,核心的扫描工作有服务端NessusD
进行,用户端NessusClient
可以制定扫描的策略和目标。这里使用的是RHEL5.4
的操作系统。

1、         安装
Nessus漏洞检测系统,需要先到
http
//www.nessus.org下载
rpm软件包。
A.        安装:
[root@localhost src]# ls
 Nessus-3.2.0-es5.i386.rpm
 NessusClient-3.2.1-es5.i386.rpm 
[root@localhost src]# rpm -ivh Nessus*
Preparing...                ########################################### [100%]
   1:NessusClient           ########################################### [ 50%]
   2:Nessus                 ########################################### [100%]
nessusd (Nessus) 3.2.0. for Linux
(C) 1998 - 2008 Tenable Network Security, Inc.

 

Processing the Nessus plugins...
[##################################################]

 

All plugins loaded
 - Please run /opt/nessus//sbin/nessus-adduser to add an admin user
 - Register your Nessus scanner at http://www.nessus.org/register/ to obtain
   all the newest plugins
 - You can start nessusd by typing /sbin/service nessusd start

 

B.        添加执行程序路径、帮助文件路径:
[root@localhost src]# export PATH=/opt/nessus/sbin/:/opt/nessus/bin/:$PATH
[root@localhost src]# export MANPATH=/opt/nessus/man:'manpath'
[root@localhost src]# vi ~/.bash_profile
# .bash_profile
export PATH=/opt/nessus/sbin/:/opt/nessus/bin/:$PATH
export MANPATH=/opt/nessus/man:'manpath'

 

2、         配置
NessusD(服务端)
A.        启动
NessusD
[root@localhost src]# service nessusd start
启动
Nessus 服务:
[确定
]
B.        添加扫描用户
[root@localhost src]# nessus-adduser
Using /var/tmp as a temporary file holder
Add a new nessusd user
----------------------
Login : scanner——
-——输入用户名
Authentication (pass/cert) [pass] : ————回车
Login password : ————————输入密码
Login password (again) :

 

User rules
----------
nessusd has a rules system which allows you to restrict the hosts
that scaner has the right to test. For instance, you may want
him to be able to scan his own host only.
Please see the nessus-adduser(8) man page for the rules syntax
Enter the rules for this user, and hit ctrl-D once you are done : ————
Ctrl+D提交
(the user can have an empty rules set)

 

 

Login             : scaner
Password          : ***********
DN                :
Rules             :
Is that ok ? (y/n) [y] y——————确认配置
user added.

 

C.        管理扫描用户
[root@localhost src]# nessus-chpasswd scanner————————修改密码
nessusd (Nessus) 3.2.0. for Linux
(C) 1998 - 2008 Tenable Network Security, Inc.

 

Authentication (pass/cert) [pass] :   
Login password :
Login password (again) :
password changed for scaner

 

3、         使用
NessusClient(用户端)
在图形终端的命令行里输入:
NessusClient &
<?xml:namespace prefix = v ns = "urn:schemas-microsoft-com:vml" />
连接服务端
NessusD
nessues-client
添加扫描目标:
执行扫描:
查看报告: