Installing Nessus 3.0.6

[/S4NE/]

I only want to say thanks....works like a charm

[elazar]

I only want to say thanks....works like a charm

Gratitude is always appreciated

[busana100]

I am sure I am doing something wrong. After I type the follwing command the computer just hung there after "All plugins loaded"


bt ~ # export PATH=$PATH:/opt/nessus/sbin:/opt/nessus/bin:
bt ~ # nessusd
nessusd (Nessus) 3.0.6. for Linux
(C) 1998 - 2007 Tenable Network Security, Inc.

Processing the Nessus plugins...
[##################################################]

All plugins loaded


When I try to type NessusClient without iniating nessusd command, it come back that it cannot find the server.

I would appreciate any help.

Thanks

[busana100]

Please ignore my last post. I fixed it and it is working beautifully.

Thanks again elazar for such a nice tutorial.

[purehate]

I am sure I am doing something wrong. After I type the follwing command the computer just hung there after "All plugins loaded"


bt ~ # export PATH=$PATH:/opt/nessus/sbin:/opt/nessus/bin:
bt ~ # nessusd
nessusd (Nessus) 3.0.6. for Linux
(C) 1998 - 2007 Tenable Network Security, Inc.

Processing the Nessus plugins...
[##################################################]

All plugins loaded


When I try to type NessusClient without iniating nessusd command, it come back that it cannot find the server.

I would appreciate any help.

Thanks

The nessus dameon and the nessus client must be running at the same time. So nessusd just like youve done and wait for the plugins to load. leave that shell open and then open you nessus client gui. Pick your target and that should do it.

[busana100]

Thanks purehate!
It worked. Does the scan stop itself or you have to press stop button?

[purehate]

the scan will complete it self. Sometimes it takes a while to go through 15,000 or so plug in so be a little patient.

[busana100]

purehate,

You are right scan did stop. I am still trying to learn to use Nessus effectively. What I want to do is get the vulnerability information from Nessus output and then find corresponding exploits from the Internet. The output looks as follows:

Number of volunerabilities:
open ports 14
Low 25
Medium 8
High 15


Where do I find those 15 high vulnerabilities? Is it in the details for each open port or somewhere else? Also some open ports are shown in red or orange or black color. Do colors mean anything?

Thanks

Thanks

[balding_parrot]

Obviously from your questions it would be be a very good idea if you were to read the Nessus manual.
All of that and much more is covered in it.

[purehate]

purehate,

You are right scan did stop. I am still trying to learn to use Nessus effectively. What I want to do is get the vulnerability information from Nessus output and then find corresponding exploits from the Internet. The output looks as follows:

Number of volunerabilities:
open ports 14
Low 25
Medium 8
High 15


Where do I find those 15 high vulnerabilities? Is it in the details for each open port or somewhere else? Also some open ports are shown in red or orange or black color. Do colors mean anything?

Thanks

Thanks

balding parrot is correct you should definitly get some documentation. I will try to help a little if you click or double click on the writing that says high it should give you the output in the other window. As for finding the exploits that is a entirely different affair. nessus is not just going to take you to the magic haxor it now exploit. It involves research and a basic understanding of ports,protocol and services. It will however give you the next piece in the puzzle. Also trusting only one app is always a bad idea . you should always back up your findings before attacking another machine.