Difference between revisions of "Nessus"

From ArchWiki
Jump to: navigation, search
(Usage: update for systemd)
m (Installation: remove needless hand-holding)
Line 2: Line 2:
  
 
==Installation==
 
==Installation==
Download and extract the source tarball from the {{AUR|nessus}} page on the [[AUR]]:
+
Download and extract the {{AUR|nessus}} tarball available in the [[AUR]].
{{bc|$ wget https://aur.archlinux.org/packages/nessus/nessus.tar.gz
+
$ tar xvf nessus.tar.gz}}
+
  
Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license and download the package:
+
Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license, and download the package:
*32-bit: Nessus-5.0.0-fc16.i386.rpm (12103 KB)
+
*32-bit: Nessus-5.0.2-fc16.i386.rpm
*64-bit: Nessus-5.0.0-fc16.x86_64.rpm (12092 KB)
+
*64-bit: Nessus-5.0.2-fc16.x86_64.rpm
  
Move the RPM file into into the {{ic|nessus}} directory:
+
Move the RPM file into the {{ic|nessus}} directory (i.e. the directory you extracted the tarball's contents to).
{{bc|$ cd nessus
+
$ mv ~/Downloads/Nessus-5.0.0-fc16.x86_64.rpm .}}
+
  
Then, make (and install) the package and any needed dependencies:
+
Then, build and install the package and any needed dependencies:
{{bc|$ makepkg -csi}}
+
$ makepkg -csi
  
 
==Post-installation setup==
 
==Post-installation setup==

Revision as of 19:17, 14 November 2012

Nessus is a proprietary vulnerability scanner available free of charge for personal use. There are over 40000 plugins covering a large range of both local and remote flaws.

Installation

Download and extract the nessusAUR tarball available in the AUR.

Go to http://tenable.com/products/nessus/nessus-download-agreement, agree to the license, and download the package:

  • 32-bit: Nessus-5.0.2-fc16.i386.rpm
  • 64-bit: Nessus-5.0.2-fc16.x86_64.rpm

Move the RPM file into the nessus directory (i.e. the directory you extracted the tarball's contents to).

Then, build and install the package and any needed dependencies:

$ makepkg -csi

Post-installation setup

Create an SSL certificate for the Nessus web interface:

# /opt/nessus/sbin/nessus-mkcert

Register your email at http://nessus.org/register/ and wait for your key to be emailed to you. Then, download all the plugins from the feed with:

# /opt/nessus/bin/nessus-fetch --register <your key here>
Note: If you are behind a proxy, you need to modify /opt/nessus/etc/nessus/nessus-fetch.rc.

Create a Nessus admin user (unrelated to *nix style users):

# /opt/nessus/sbin/nessus-adduser

Usage

The nessusAUR package provides a nessusd.service unit file, see systemd for details.

Access the web interface at https://localhost:8834 and/or use the commandline interface (/opt/nessus/bin/nessuscmd). In most browsers, you will need to manually accept the SSL certificate you created for the server.

Removal

The package can be removed with pacman, but files created by nessus (such as the plugin database it downloads) must be removed manually:

Note: This will delete your nessus configuration files.
# rm -r /opt/nessus