1。到[url]http://www.[/url]nessus.org/注册一个帐号,下载最新的安装文件.并到你注册的邮箱查收注册码保存。

Nessus-3.0.5-es4.i386.rpm

NessusClient-1[1].0.2-es4.i386.rpm


2。安装Nessus-3.0.5-es4.i386

[root@test8 sbin] rpm -ivh Nessus-3.0.5-es4.i386.rpm

Preparing...                ########################################### [100%]

1:Nessus                 ########################################### [100%]



**** This host seems to be running under VMware.

**** Nessus performance is abysmal when running under VMware

**** We do not recommand you use this setup in production


**** This host seems to be running under VMware.

**** Nessus performance is abysmal when running under VMware

**** We do not recommand you use this setup in production


nessusd (Nessus) 3.0.5. for Linux

(C) 1998 - 2007 Tenable Network Security, Inc.


Processing the Nessus plugins...

[##################################################]


All plugins loaded

- Please run /opt/nessus//sbin/nessus-add-first-user to add an admin user

- Register your Nessus scanner at [url]http://www.[/url]nessus.org/register/ to obtain

   all the newest plugins

- You can start nessusd by typing /sbin/service nessusd start



3.添加检测用户帐号和密码

[root@test8 sbin]# ./nessus-add-first-user


**** This host seems to be running under VMware.

**** Nessus performance is abysmal when running under VMware

**** We do not recommand you use this setup in production


**** This host seems to be running under VMware.

**** Nessus performance is abysmal when running under VMware

**** We do not recommand you use this setup in production


Using /var/tmp as a temporary file holder


Add a new nessusd user

----------------------



Login : admin

Authentication (pass/cert) [pass] : pass

Login password :

Login password (again) :


User rules

----------

nessusd has a rules system which allows you to restrict the hosts

that admin has the right to test. For instance, you may want

him to be able to scan his own host only.


Please see the nessus-adduser(8) man page for the rules syntax


Enter the rules for this user, and hit ctrl-D once you are done :

(the user can have an empty rules set)



Login             : admin

Password          : ***********

DN                :

Rules             :



Is that ok ? (y/n) [y] y

user added.

Thank you. You can now start Nessus by typing :

/opt/nessus//sbin/nessusd -D


4。注册Nessus


[root@test8 sbin]#/opt/nessus/bin/nessus-fetch --register AA2A-8930-320E-A2FF-3BC3


5。启用Nessus服务

[root@test8 sbin]# ./nessusd -D



**** This host seems to be running under VMware.

**** Nessus performance is abysmal when running under VMware

**** We do not recommand you use this setup in production



nessusd (Nessus) 3.0.5. for Linux

(C) 1998 - 2007 Tenable Network Security, Inc.


Processing the Nessus plugins...

[##################################################]


All plugins loaded


6。基于安全考虑创建CA证书

[root@test8 bin]# ./nessus-mkcert-client

Do you want to register the users in the Nessus server

as soon as you create their certificates ? (y/n): y

This script will now ask you the relevant information to create the SSL

client certificates for Nessus.

Client certificates life time in days [365]:365

Your country (two letter code) [FR]: CN

Your state or province name [none]: BJ

Your location (e.g. town) [Paris]: BJ

Your organization [none]: Test

Your organizational unit [none]:Test