next up previous contents
Next: Nessus 設定 Up: Nessus 弱點偵測 Previous: Nessus 簡介   Contents

Nessus 架設

  1. 加入 dywang repo。
    [root@dyw219 ~]# vim /etc/yum.repos.d/dywang.repo
    [dywang]
    name=De-Yu Wang
    baseurl=http://dywang.csie.cyut.edu.tw/centos6/
    gpgcheck=0
    enabled=1
    
  2. 安裝 nessus 套件。
    [root@dyw219 ~]# yum install Nessus
    .....................
      Installing     : Nessus-5.2.5-es6.x86_64                                  1/1 
    nessusd (Nessus) 5.2.5 [build N25109] for Linux
    Copyright (C) 1998 - 2014 Tenable Network Security, Inc
    
    Processing the Nessus plugins...
    [##################################################]
    
    All plugins loaded
     - You can start nessusd by typing /sbin/service nessusd start
     - Then go to https://dyw219:8834/ to configure your scanner
    
    Installed:
      Nessus.x86_64 0:5.2.5-es6                                                     
    
    Complete!
    
  3. 啟動 nessussd 服務
    [root@dyw219 ~]# /etc/init.d/nessusd start
    Starting Nessus services:                                  [  OK  ]
    

  4. 設定防火牆,開啟 8834 port,並重新啟啟動防火牆。
    [root@dyw219 ~]# vim /etc/sysconfig/iptables
    #################################################################
    -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
    -A INPUT -m state --state NEW -m tcp -p tcp --dport 8834 -j ACCEPT
    -A INPUT -j REJECT --reject-with icmp-host-prohibited
    #################################################################
    [root@dyw219 ~]# /etc/init.d/iptables restart
    iptables: Flushing firewall rules:                         [  OK  ]
    iptables: Setting chains to policy ACCEPT: mangle nat filte[  OK  ]
    iptables: Unloading modules:                               [  OK  ]
    iptables: Applying firewall rules:                         [  OK  ]
    



De-Yu Wang 2018-08-08