Difference between revisions of "Nessus"

From ArchWiki
Jump to: navigation, search
m (Installation)
m (Installation)
Line 6: Line 6:
 
$ tar xvf nessus.tar.gz}}
 
$ tar xvf nessus.tar.gz}}
 
Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license and download the package:
 
Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license and download the package:
*32-bit: Nessus-4.4.0-fc14.i386.rpm (12103 KB)
+
*32-bit: Nessus-4.4.1-fc14.i386.rpm (12103 KB)
*64-bit: Nessus-4.4.0-fc14.x86_64.rpm (12092 KB)
+
*64-bit: Nessus-4.4.1-fc14.x86_64.rpm (12092 KB)
  
 
Move the rpm into into the nessus directory:
 
Move the rpm into into the nessus directory:
 
{{Cli|$ cd nessus
 
{{Cli|$ cd nessus
$ mv ~/Downloads/Nessus-4.4.0-fc14.x86_64.rpm .}}
+
$ mv ~/Downloads/Nessus-4.4.1-fc14.x86_64.rpm .}}
  
 
Then, make (and install) the package and any needed dependencies:
 
Then, make (and install) the package and any needed dependencies:

Revision as of 20:25, 29 March 2011

Nessus is a proprietary vulnerability scanner available free of charge for personal use. There are over 40000 plugins covering a large range of both local and remote flaws.

Installation

Download and extract the source tarball from the AUR: Template:Cli Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license and download the package:

  • 32-bit: Nessus-4.4.1-fc14.i386.rpm (12103 KB)
  • 64-bit: Nessus-4.4.1-fc14.x86_64.rpm (12092 KB)

Move the rpm into into the nessus directory: Template:Cli

Then, make (and install) the package and any needed dependencies: Template:Cli

Post-installation setup

Create an SSL certificate for the Nessus web interface: Template:Cli

Register your email at http://nessus.org/register/ and wait for your key to be emailed to you. Then, download all the plugins from the feed with: Template:Cli

Create a Nessus admin user (unrelated to *nix style users): Template:Cli

Usage

Start the daemon just like any other: Template:Cli

You probably don't want to add it to DAEMONS in rc.conf.

Access the web interface at https://localhost:8834 and/or use the commandline interface (/opt/nessus/bin/nessuscmd). In most browsers, you'll need to manually accept the SSL certificate you created for the server.

Removal

The package can be removed with pacman, but files created by nessus (such as the plugin database it downloads) must be removed manually:

Note: This will delete your nessus configuration files.

Template:Cli