一、openvas介绍
OpenVAS (Open Vulnerability Assessment System)是开放式漏洞评估系统,其核心部件是一个服务器,包括一套望楼漏洞测试程序,可以检测远程系统和应用程序中的安全问题。
官网:http://www.openvas.org/
注意:OpenVAS Server仅支持Linux系统。OpenVAS Client 没有特殊的要求
二、安装
1.配置网络
[root@localhost ~]#vi /etc/sysconfig/network-scripts/ifcfg-eth0
ONBOOT=yes
[root@localhost ~]#/etc/init.d/network restart
2.禁用selinux,重启生效
[root@localhost ~]#vi /etc/selinux/config
SELINUX=disabled
[root@localhost ~]#reboot
因为是虚拟机,所以把防火墙关掉了
[root@localhost ~]#/etc/init.d/iptables stop
3.安装wget
[root@localhost ~]#yum -y install wget
4.配置yum源
[root@localhost ~]#wget -q -O - http://www.atomicorp.com/installers/atomic |sh
5.安装openvas
[root@localhost ~]#yum -y install openvas
6.更新openvas数据库,设置用户名密码,我用了80分钟左右 = =!
[root@localhost ~]#openvas-setup
7.同步,已经更新到最新,可以不执行
[root@localhost ~]#openvas-nvt-sync
8.下载检查脚本,赋予权限并执行
[root@localhost ~]#wget https://svn.wald.intevation.org/svn/openvas/trunk/tools/openvas-check-setup --no-check-certificate
[root@localhost ~]#chmod 755 openvas-check-setup
[root@localhost ~]#./openvas-check-setup --server
9.启动apache
[root@localhost ~]#/etc/init.d/httpd start
10.检查模块进程是否正常
[root@localhost src]# service gsad status
gsad (pid 32552) is running...
[root@localhost src]# service openvas-manager status
openvas-manager (pid 32534) is running...
[root@localhost src]# /etc/init.d/openvas-scanner status
openvassd (pid 32404) is running...
11.web登录
https://127.0.0.1:9392
本文出自 “流星工作室” 博客,请务必保留此出处http://redone.blog.51cto.com/5382451/1907599
原文地址:http://redone.blog.51cto.com/5382451/1907599
