Nessus5.X部署手记
确定系统版相关信息:
[root@slave_vpn ~]# lsb_release -a
LSB Version: :core-4.0-amd64:core-4.0-ia32:core-4.0-noarch:graphics-4.0-amd64:graphics-4.0-ia32:graphics-4.0-noarch:printing-4.0-amd64:printing-4.0-ia32:printing-4.0-noarch
Distributor ID: CentOS
Description: CentOS release 5.9 (Final)
Release: 5.9
Codename: Final
[root@slave_vpn ~]# uname -a
Linux slave_vpn.tls.org 2.6.18-348.12.1.el5 #1 SMP Wed Jul 10 05:28:41 EDT 2013 x86_64 x86_64 x86_64 GNU/Linux
OK。最新版是Nessus-5.2.1下载完成后,接下来直接安装即可。
[root@slave_vpn ~]# rpm -ivh Nessus-5.2.1-es5.x86_64.rpm
warning: Nessus-5.2.1-es5.x86_64.rpm: Header V3 DSA signature: NOKEY, key ID edc8e186
Preparing… ########################################### [100%]
1:Nessus ########################################### [100%]
nessusd (Nessus) 5.2.1 [build N24021] for Linux
Copyright (C) 1998 – 2013 Tenable Network Security, Inc
Processing the Nessus plugins…
[##################################################]
All plugins loaded
- You can start nessusd by typing /sbin/service nessusd start
- Then go to https://slave_vpn.tls.org:8834/ to configure your scanner
安装完成。按照上面的提示执行下一步动作。
[root@slave_vpn ~]# /etc/init.d/nessusd start
Starting Nessus services: [ OK ]
[root@slave_vpn ~]# netstat -ntlp|grep 8834
tcp 0 0 0.0.0.0:8834 0.0.0.0:* LISTEN 2315/nessusd
tcp 0 0 :::8834 :::* LISTEN 2315/nessusd
接下移步注册 Activation Code:http://www.nessus.org/register
会重定向到:http://www.tenable.com/products/nessus/nessus-plugins/obtain-an-activation-code
有两种激活方式可供选择:
Using Nessus at Work和Using Nessus at Home 前者专业版收费,后者申请即可获取到激活码,功能有一定的限制。
Home feed的功能如下所示:
Tenable Nessus® Home allows you to scan your personal home network
(up to 16 IP addresses per scanner) with the same high-speed, in-depth
assessments and agentless scanning convenience that Nessus subscribers
enjoy.
Please note that Nessus Home does not provide access to support,
allow you to perform compliance checks or content audits, or allow you
to use the Nessus virtual appliance. If you require support and these additional features, please purchase a Nessus subscription.
Nessus Home is available for personal use in a home environment only. It is not for use by any commercial organization. If you represent a charity or use Nessus in classroom training, learn more about the Tenable Charitable & Training Program for these organizations.
Nessus at Home功能以及产品线:
https://store.tenable.com/?main_page=index&cPath=1
我这里申请Home feed.
看到下面这则消息,返回到你邮箱查看激活码即可。
Thank You for Registering for Nessus Home! Check Your Email for the Activation Code Plugin Feed Registration
OK。打开浏览器执行:https://IP:8834/ 或者https://主机名:8834 会有警告信息提示。 Chrome浏览器选择仍然继续即可。
添加例外,确认即可。按照提示下一步
Welcome to Nessus® 5
Thank you for installing Nessus, the world leader in vulnerability scanners. Nessus will allow you to perform:
- High-speed vulnerability discovery, to determine which hosts are running which services
- Agentless auditing, to make sure no host on your network is missing security patches
- Compliance checks, to verify and prove that every host on your network adheres to the security policy you defined
- Scan scheduling, to automatically run scans at the frequency you select
- And more!
During the next steps, we are going to create an
administrative account and register your scanner with a Plugin Feed,
which we will download. You will need an Activation Code before you can
use Nessus; if you do not have an Activation Code already, please go to http://www.nessus.org/register/ to get one now.
下面注册安装完成后登陆到系统的用户(具有管理员权限,也可以等待安装完成后自行手动添加)
前面注册的激活码此时可以使用了,接下来按照提示一步步操作即可,Nessus is initializing 这是一个漫长的过程,网速较好的话喝杯咖啡休息一下回来,网速较差的话小睡一会回来即可。
OK。安装完成后 html5版式: https://172.22.22.65.:8834/html5.html#/ 或者flash版式: https://192.168.33.74:8834/flash.html
到此安装全部结束。使用方法自己琢磨吧。 注意Home feed 激活码不能跨网对公网IP进行扫描。详见上面Home feed的功能描述。
上一篇: 游戏保护大放送之NP
下一篇: 赞!荣耀9/V9上线人脸识别功能