UNIX NetWork

centos-asterisk at home

With this simple tutorial I will explain how to install Nessus client (nessus) and Nessus Daemon (nessusd) and properly register it, so you don’t end up with the limitations of a non-registered version of the vulnerability scanner.

Installing:

I personally use apt-, however, you may choose any other package manager.

apt-get install nessus nessusd -y

This will install the nessus client and server, and the -y is used to answer YES to the confirmation of apt-get.

We have now installed both the client and the server. Let’s proceed to the addition of a user:

nessus-adduser

Display:

gouki@8104:~$ sudo nessus-adduser
Using /var/tmp as a temporary file holder

Add a new nessusd user
———————-

Login : darknet
Authentication (pass/cert) [pass] :
Login password :
Login password (again) :

User rules
———-
nessusd has a rules system which allows you to restrict the hosts
that darknet has the right to test. For instance, you may want
him to be able to scan his own host only.

Please see the nessus-adduser(8) man page for the rules syntax

Enter the rules for this user, and hit ctrl-D once you are done :
(the user can have an empty rules set)

Login : darknet
Password : ***********
DN :
Rules :

Is that ok ? (y/n) [y] y
user added.

About this display:

When asked about Authentication (pass/cert) [pass] : just press enter, as we will not use any.
When asked about rules for the specific user, press CTRL+D, as we will not enter any rules for the user.

Starting the Daemon:

By default, nessusd has not started. To manully force him to, you will need to do the following:

sudo /etc/init.d/nessusd start

Registering Nessus:

Nessus will work without being registered, however, it will have limitations. Unnecessary limitations, since it is easily registered.

Nessus Registration page - Go here and start the proccess.

After you have entered your e-mail address, the instructions on how to register will not work on Debian-based OSs.

On the eMail from the Nessus team, you will be instructed to this path: /opt/nessus/bin/nessus-fetch, however, the path should be replaced by /usr/bin, making the complete registration command: sudo /usr/bin/nessus-fetch –register XXXX-XXXX-XXXX-XXXX-XXXX

You should now have a complete and working installation of Nessus. Enjoy and remember, automatic scanners are not 1337! =)

TIP: Before starting to use Nessus, update the plugins by doing the following:

sudo nessus-update-plugins

primero ponemos

#echo “apache22_enable=”YES”" >> /ect/rc.conf

y vamos con mysql

cd /usr/ports/databases/mysql41-server

o el mysql server que gusten

cd /usr/ports/databases/

luego un ls

y ver q versiones de mysql server trae esto x si no quieres la 4.1

bueno ya accedes al mysqlVERSION-server que gustes instalar

y haces un

#make install clean

cd /usr/ports/databases/php5-mysql

#make install clean

cd /usr/ports/www/php5-session

#make install clean

cd /usr/ports/graphics/php5-gd

#make isntall clean

luego

echo ‘mysql_enable=”YES”‘ >> /etc/rc.conf

/usr/local/etc/rc.d/mysql-server start

ahora nos falta agregar al httpd.conf las siguientes lineas

LoadModule php5_module
libexec/apache/libphp5.so

antes de hacer eso checa si no ya te lo agrego el php solito

para probar que el php esta funcinando hacemos un

#touch test.php

#echo “< ? phpinfo(); ?>” >> test.php

y lsito.

FreeBSD Apache Mysql PHP5

deb http://dotdeb.pimpmylinux.org/ stable all
deb-src http://dotdeb.pimpmylinux.org/ stable all

apt-get install php5

Encontraremos el “named.conf” situado en “/etc/namedb” lo podemos configurar a nuestro gusto, yo lo he dejado asi:

options {
directory “/etc/namedb”;
pid-file “/var/run/named/pid”;
dump-file “/var/dump/named_dump.db”;
statistics-file “/var/stats/named.stats”;
listen-on { IPLOCAL; };
};
zone “.” {
type hint;
file “named.root”;
};
zone “0.0.127.IN-ADDR.ARPA” {
type master;
file “master/localhost.rev”;
};
zone “subnacion.com” {
type master;
file “master/subnacion.com”;
};

Para crear las local zone debeis ejecutar situado en /etc/named el siguiente script:

sh make-localhost

No respondera nada al ejecutarse. Pero habra creado los archivos de las zonas locales.

Aquí tenéis como se deben escribir las zonas de los DNS Server situadas en “/etc/namedb/master/subnacion.com” en este caso. Como podeis observar se puede situar en el sitio donde mas te guste haciendo un par de retoques a la configuracion.

$TTL 3600
subnacion.com. IN SOA ns0.subnacion.com. admin.subnacion.com. (
1055026205
6H
1H
5D
20M )
subnacion.com. IN A x.x.x.x
mysql.subnacion.com. IN A x.x.x.x
www.subnacion.com. IN CNAME subnacion.com.
ns1.subnacion.com. IN A x.x.x.x
ns2.subnacion.com. IN A x.x.x.x
subnacion.com. IN NS ns0.subnacion.com.
unixgeneration.com. IN NS ns1.subnacion.com.
mail.subnacion.com. IN MX 1 subnacion.com.

Por lo demas, solo teneis que modificar las x.x.x.x por las IP de los servidores. Para comprobar el estado de la configuracion y las zonas:

named-checkconf -z /etc/namedb/named.conf
named-checkzone subnacion.com /etc/namedb/master/subnacion.com

En caso de que todo este perfectamente bien configurado podemos añadir en rc.conf el siguiente texto para que arranque el demonio automaticamente cuando se ejecuten los “scripts de rc”, incluido cuando arranque el ordenador:

named_enable=”YES”

Y ahora podemos arrancar el demonio de named:

/etc/rc.d/named start

para crear una carpeta de public a cada usuario, se crea una carpeta que se llame public_html en /etc/skel
Y cada vez que creas un user, se crea la carpeta.

thanks to: deathwarrior