服务器评测
Nessus相对来讲,是一个非常强大的安全扫描审计工具,对于黑客来说,就是针对目标主机进行漏洞查找的工具,可用扫描插件每天都有更新,更新速度一流,深受广大安全爱好者的喜爱。
Nessus扫描器是c/s模式结构
但安装使用却有点麻烦
www.linuxidc.com@linuxidc$sudo apt-get install nessusd
安装服务端
www.linuxidc.com@linuxidc$sudo apt-get install nessus
安装客户端
www.linuxidc.com@linuxidc:~$sudo nessus-adduser
Using /var/tmp as a temporary file holder
Add a new nessusd user
———————-
Login : n3tl04d
Authentication (pass/cert) [pass] : #直接回车,使用密码认证
Login password :
Login password (again) :
User rules
———-
nessusd has a rules system which allows you to restrict the hosts
that n3tl04d has the right to test. For instance, you may want
him to be able to scan his own host only.
Please see the nessus-adduser(8) man page for the rules syntax
Enter the rules for this user, and hit ctrl-D once you are done :
(the user can have an empty rules set)
Login : n3tl04d
Password : ***********
DN :
Rules :
Is that ok ? (y/n) [y] y
user added.
添加用户
www.linuxidc.com@linuxidc:~$sudo nessusd -D
All plugins loaded
启动服务
www.linuxidc.com@linuxidc:~$nessus
打开客户端登录后就可以了
