Re: Replacement for Nessus
On 2/23/06, Juergen Fiedler [EMAIL PROTECTED] wrote: Hello, I used to run Nessus on a semi-regular basis to make sure that my firewall is still doing what it is supposed to do. With the latest version of Nessus not actually being all that free anymore, I find myself looking for alternatives: Something that looks for open ports on my system and also gives me an overview of the risks the software listening on those ports may pose. For example, Nessus didn't just observe that I have an HTTPS server running, but also that I was allowing weak encryption schemes. Do you know of anything out there that might serve a similar purpose? It would be really, really nice if such a program would run in a text console (which was possible with Nessus, but a bit of a pain). Thanks, Juergen -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) iD8DBQFD/eCihqmlHrBtR3kRAiiDAKCOUbSRumPAO9tuWunaRrRVJ5IDVgCgqk3g vNjIfiRx+POWCNTTKLNLCFo= =UqLJ -END PGP SIGNATURE- Check http://www.metasploit.com/ -- Cheers, Maxim Vexler (hq4ever). Do u GNU ?
Re: Replacement for Nessus
On Thu, Feb 23, 2006 at 08:36:03PM -0500, Gene Heskett wrote: On Thursday 23 February 2006 16:46, Sergio Cu?llar Vald?s wrote: There is Snort, but I don't know whether it will do all you ask. Remote network security auditor != Flexible Network Intrusion Detection System Agreed. Portsentry and tcpwrappers, along with iptables, has kept me safe and invisible for the last 4 years, hooked to a dsl 24/7/365. My problem is that I do expose certain services (SMTP, IMAP, HTTP, etc.) to the outside world and would like to make sure that I am doing that as safely as possible - which more often than not means that not only the firewall rules but also the application configuration has to be adjusted. For example, Nessus made me aware that my default Apache installation served up an index of /usr/share/doc, making the versions of all software I have installed on my system known to everyone who cared to look - not something that I necessarily need. --j signature.asc Description: Digital signature
Re: Replacement for Nessus
On Friday 24 February 2006 09:20, Juergen Fiedler wrote: On Thu, Feb 23, 2006 at 08:36:03PM -0500, Gene Heskett wrote: On Thursday 23 February 2006 16:46, Sergio Cu?llar Vald?s wrote: There is Snort, but I don't know whether it will do all you ask. Remote network security auditor != Flexible Network Intrusion Detection System Agreed. Portsentry and tcpwrappers, along with iptables, has kept me safe and invisible for the last 4 years, hooked to a dsl 24/7/365. My problem is that I do expose certain services (SMTP, IMAP, HTTP, etc.) to the outside world and would like to make sure that I am doing that as safely as possible - which more often than not means that not only the firewall rules but also the application configuration has to be adjusted. For example, Nessus made me aware that my default Apache installation served up an index of /usr/share/doc, making the versions of all software I have installed on my system known to everyone who cared to look - not something that I necessarily need. Well, in my case since I'm a slave to vz, thats not a worry as vz blocks port 80 to ensure no one runs their own web servers at home. fscking jerks. --j -- Cheers, Gene People having trouble with vz bouncing email to me should add the word 'online' between the 'verizon', and the dot which bypasses vz's stupid bounce rules. I do use spamassassin too. :-) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Replacement for Nessus
Hello, I used to run Nessus on a semi-regular basis to make sure that my firewall is still doing what it is supposed to do. With the latest version of Nessus not actually being all that free anymore, I find myself looking for alternatives: Something that looks for open ports on my system and also gives me an overview of the risks the software listening on those ports may pose. For example, Nessus didn't just observe that I have an HTTPS server running, but also that I was allowing weak encryption schemes. Do you know of anything out there that might serve a similar purpose? It would be really, really nice if such a program would run in a text console (which was possible with Nessus, but a bit of a pain). Thanks, Juergen signature.asc Description: Digital signature
Re: Replacement for Nessus
Juergen Fiedler wrote: Hello, I used to run Nessus on a semi-regular basis to make sure that my firewall is still doing what it is supposed to do. With the latest version of Nessus not actually being all that free anymore, I find myself looking for alternatives: Something that looks for open ports on my system and also gives me an overview of the risks the software listening on those ports may pose. For example, Nessus didn't just observe that I have an HTTPS server running, but also that I was allowing weak encryption schemes. Do you know of anything out there that might serve a similar purpose? It would be really, really nice if such a program would run in a text console (which was possible with Nessus, but a bit of a pain). Thanks, Juergen There is Snort, but I don't know whether it will do all you ask. Chris. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: Replacement for Nessus
On Thu, Feb 23, 2006 at 09:30:18PM +, Chris Lale wrote: Juergen Fiedler wrote: [looking for alternatives to nessus] There is Snort, but I don't know whether it will do all you ask. Chris. This far, I have only used Snort as an IDS. I hear that it can be used for other purposes, too, but is it actually suitable for actively scanning a host? I'd hate to have to wait for the script kiddies to knock on my front door (or back door, as the case may be) to be made aware of a vulnerability in my system. Thanks, --j signature.asc Description: Digital signature
Re: Replacement for Nessus
There is Snort, but I don't know whether it will do all you ask. Remote network security auditor != Flexible Network Intrusion Detection System -- Meine Hoffnung soll mich leiten Durch die Tage ohne Dich Und die Liebe soll mich tragen Wenn der Schmerz die Hoffnung bricht
Re: Replacement for Nessus
On Thursday 23 February 2006 16:46, Sergio Cuéllar Valdés wrote: There is Snort, but I don't know whether it will do all you ask. Remote network security auditor != Flexible Network Intrusion Detection System Agreed. Portsentry and tcpwrappers, along with iptables, has kept me safe and invisible for the last 4 years, hooked to a dsl 24/7/365. -- Cheers, Gene People having trouble with vz bouncing email to me should add the word 'online' between the 'verizon', and the dot which bypasses vz's stupid bounce rules. I do use spamassassin too. :-) Yahoo.com and AOL/TW attorneys please note, additions to the above message by Gene Heskett are: Copyright 2006 by Maurice Eugene Heskett, all rights reserved. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]