From ArchWiki
Revision as of 06:45, 25 November 2010 by Thestinger (talk | contribs) (Installation)
Jump to: navigation, search

Nessus is a powerful vulnerability scanner with over 40000 plugins, covering local and remote flaws.


  1. Download and extract the taurball:
    $ wget
    $ tar xvf nessus.tar.gz
  2. Download the rpm from
    32-bit: Nessus-4.4.0-fc14.i386.rpm (12103 KB)
    64-bit: Nessus-4.4.0-fc14.x86_64.rpm (12092 KB)
  3. Move the rpm into in the nessus directory.
    $ cd nessus
    $ mv ~/download/Nessus-4.4.0-fc14.x86_64.rpm .
  4. Then, make (and install) the package:
    $ makepkg -csi

Post-installation setup

  1. Create an SSL certificate for the Nessus web interface:
    # /opt/nessus/sbin/nessus-mkcert
  2. Register your email at and wait for your key to be emailed to you. Then, download all the plugins from the feed with:
    # /opt/nessus/bin/nessus-fetch --register <your key here>
  3. Create a Nessus admin user (unrelated to *nix style users):
    # /opt/nessus/sbin/nessus-adduser


Start the daemon just like any other:

# /etc/rc.d/nessus start

Access the web interface at https://localhost:8834 and/or use the commandline interface (/opt/nessus/bin/nessuscmd).


The package can be removed with pacman, but files created by nessus (such as the plugin database it downloads) must be removed manually:

# rm -r /opt/nessus