Continued from page 1
Download Nessus
- Click "Local Network"
- Change location to "/"
- Right click and Create New directory titled "nessus-installer", close window
- Using browser go to http://www.nessus.org/nessus_2_0.html
- From "The easy and less dangerous way" section download "nessus-installer.sh" file saving to
"nessus-installer" directory.
Compile Nessus
- Click "Konsole" on task bar and change directories to "nessus-installer"
- Type "sh nessus-installer.sh"
- Accept defaults by pressing (During compiling process you may receive warning messages for "nessus_popen", "insert_nasl_func", and "extra tokens". These are warning messages and compiling process should complete successfully.)
- When compiling process is complete you will be prompted to press to quit.
Nessus Server Setup
- Type "nessus-mkcert" to make a server certificate
- Accept default for "CA certificate life"
- Accept default for "Server certificate life"
- Enter your 2 letter country code
- Enter your state or province code
- Enter your location
- Enter your organization name
- Certificate process completed message
- Type "nessus-adduser" to create a user account
- Enter login name
- Accept default for authentication
- Enter password
- Press ctrl-D to end user creation process
- "Is that ok?" message
- Type "nessusd -D" to start Nessus server service (It may take several seconds for Nessus to finish initializing. The command prompt will return once Nessus daemon is started).
If you wish to have Nessus Server daemon automatically started when system is booted, edit "etc/init.d/boot.local" file and append "nessusd -D".
Nessus Setup
- Type "nessus"
- Enter login
- Enter password
- Click "Log in" button
- "SSL Setup" window will appear, click
- "Nessus" windows asking to accept this certificate, click
- "Warning" message about plugins crashing remote systems will appear, click
- Close "Konsole" window
KAlarm
- Click "Start Applications" on task bar and select "Utilities", "Time", then "KAlarm"
- In KAlarm window click "Actions", then New
- Check "Command" and enter "nessus-update-plugins" as command line
- Check "Any time" check box
- Check "Recur" for Repetition, then select "Recurrence" Tab
- Enter "01:00" for "Recurr every" field
- Select button, then
- Close "Kalarm" window (Kalarm by default is automatically stated upon boot.)
Firewall
KDE provides built-in firewall protection. Vulnerability scanners such as Nessus do not normally function well with software firewalls in place. To remove firewall:
- Click "Control Center" on task bar
- Click "YaST2 modules"
- Click "Security and Users"
- Click "Firewall"
- Check "Stop Firewall and Remove from Boot Process"
- "Firewall configuration - deactivate firewall", click
- "The firewall is now turned off"
General Information
Uninstall executable: /usr/local/sbin/uninstall-nessus
Configuration file: /usr/local/etc/nessus/nessusd.conf
Certificate Authority: /usr/local/com/nessus/CA/cacert.pem
Certificate Authority - Private: /usr/local/var/nessus/CA/cakey.pem
Nessus Server Certificate file: /usr/local/com/nessus/CA/servercert.pem
Nessus Server - Private Key file: /usr/local/var/nessus/CA/serverkey.pem
Nessus uses port 1241 to communicate
You now have a fully functioning Nessus server daemon and client installed on SuSE using KDE desktop environment. Kalarm is setup to automatically update Nessus plugins once per hour to insure you have latest vulnerability tests. Nessus is now fully operational to help with your security needs.
Lew Newlin is CTO of Information Solutions, Inc. that operates SiteRecon.com. SiteRecon specializes in security, email monitoring, and web site monitoring for Internet service providers and businesses.
