¼ø¶È»ñÎÁ/12
ÀȼåÀ¸¡ºº †
¥Í¥Ã¥È¥ï¡¼¥¯¥µ¡¼¥Ð¤È¤·¤Æ¤ÎÀȼåÀ¤¬¤É¤ì¤¯¤é¤¤¤Î¤â¤Î¤«¡¤ÄêÎÌŪ¤ËÇÄ°®¤¹¤ë¤Î¤Ï¤Ê¤«¤Ê¤«Æñ¤·¤¤.
¤·¤«¤·¡¤Æñ¤·¤¤¤«¤é¤È¤¤¤Ã¤ÆÊüÃÖ¤·¤Æ¤ª¤¯¤È¤Þ¤¹¤Þ¤¹¾õ¶·¤Ï°¤¯¤Ê¤ê¤«¤Í¤Ê¤¤¤Î¤Ç¡¤¤³¤¦¤·¤¿ÇÄ°®¤Ë¤Ä¤¤¤ÆÌòΩ¤Ä¥Ä¡¼¥ë¤òÀѶËŪ¤Ë»È¤ª¤¦.
¤³¤¦¤·¤¿ÌÜŪ¤Ë¤Ï(¥Í¥Ã¥È¥ï¡¼¥¯)¥¹¥¥ã¥Ê¤È¸Æ¤Ð¤ì¤ë¥Ä¡¼¥ë¤¬¤¢¤ë.
°Ê²¼¡¤Í̾¤Ê¤â¤Î¤òµó¤²¤Æ¤ª¤³¤¦.
SAINT (µì SATAN) | ÀȼåÀ¤òÃΤ뤿¤á¤Î¥¹¥¥ã¥Ê¤È¤·¤Æ¤ÎÏ·ÊÞŪ¥Ä¡¼¥ë. SATAN ¤È¤·¤ÆÅо줷¤¿¤È¤¤ÏʪµÄ¤ò¤«¤â¤·¤¿. |
Nessus | SAINT ¤è¤ê¤â»È¤¤¤ä¤¹¤¤¡¤¥ì¥Ý¡¼¥È¤¬Ê¬¤«¤ê°×¤¤¡¤¥¹¥¥ã¥Êµ¡Ç½¤ò¥×¥é¥°¥¤¥ó²½¤·¤Æ¤¢¤ë¤Ê¤É¤¬ÆÃħ. ¤¿¤À¤·¡¤ver.3.0 ¤«¤é GPL ¤Ç¤Ê¤¯¤Ê¤Ã¤¿(¸Ä¿ÍŪÍøÍѤÏ̵ÎÁ¤Ç¤Ç¤¤ë). |
OpenVAS | Nessus ¤Î¥é¥¤¥»¥ó¥¹¤¬Êѹ¹¤Ë¤Ê¤Ã¤¿¤Î¤Ç³«È¯¤µ¤ì¤¿¡¤Nessus ¤Î¸å·Ñ¥½¥Õ¥È¥§¥¢. |
OpenVAS ¤Î¥¤¥ó¥¹¥È¡¼¥ë, ÀßÄê †
¤µ¤Æ¡¤º£²ó¤Ï¥é¥¤¥»¥ó¥¹Åª¤ËÌäÂê¤ÎÀ¸¤¸¤Ê¤¤¥Ä¡¼¥ë¤È¤·¤Æ OpenVAS ¤òÍøÍѤ·¤è¤¦.
OpenVAS ¤ÏÀȼåÀ¥Á¥§¥Ã¥¯¤ò¼ÂºÝ¤Ë¹Ô¤¦¥µ¡¼¥Ð¤È¡¤¤½¤ì¤Ë»Ø¼¨¤ò½Ð¤¹¥¯¥é¥¤¥¢¥ó¥È¤Î¥µ¡¼¥Ð¥¯¥é¥¤¥¢¥ó¥ÈÊý¼°¤Ê¤Î¤Ç¡¤¥µ¡¼¥Ð¤È¥¯¥é¥¤¥¢¥ó¥È¤ò³Æ¡¹¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë.
¤½¤ÎÁ°¤Ë¤Þ¤º¡¤¤¤¤Ä¤â¤Î½àÈ÷
portsnap fetch; portsnap update
¤ò¤·¤Æ¤ª¤³¤¦.
¥¤¥ó¥¹¥È¡¼¥ë †
¤Þ¤º¥µ¡¼¥Ð¤È¡¤¤½¤ì¤ËɬÍפʥ饤¥Ö¥é¥ê3¤Ä¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦(psearch openvas ¤È¤¹¤ì¤Ð¡¤¤³¤ì¤é¤¬¥ê¥¹¥È¥¢¥Ã¥×¤µ¤ì¤ë¤Î¤Çʬ¤«¤ë¤Ï¤º).
ËÜÍè¤Ê¤é¤¤¤Ä¤â¤Î¤è¤¦¤Ë portinstall ¤Ê¤É¤Ç¥µ¡¼¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤À¤±¤ÇɬÍפʥ饤¥Ö¥é¥ê¤â¼«Æ°Åª¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë¤Î¤Ç¤½¤¦¤¹¤ë¤Î¤À¤¬¡¤º£²ó¤Ï¥é¥¤¥Ö¥é¥ê¤Î°ì¤Ä¤ËÌäÂ꤬¤¢¤ê¡¤¼ê¤Ç½¤Àµ¤ò»Ü¤¹É¬Íפ¬¤¢¤ë¤Î¤Ç½çÈ֤˥饤¥Ö¥é¥ê¤òÆþ¤ì¤Æ¤¤¤³¤¦.
pkg_info ¤Ç°Í¸´Ø·¸¤òÄ´¤Ù¤ë¤È¡¤
- openvas-libraries
- openvas-libnasl
- openvas-server
- openvas-plugins
¤Î½ç½ø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëɬÍפ¬¤¢¤ë¤³¤È¤¬Ê¬¤«¤ë(¤³¤ì°Ê³°¤Î½ç½ø¤Ç¤Ï¤Ç¤¤Ê¤¤).
¤½¤³¤Ç¡¤¾å¤Î½ç½ø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë.
portinstall openvas-libraries rehash
¼¡¤Ë openvas-libnasl ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤¬¡¤¤³¤Î¥é¥¤¥Ö¥é¥ê¤ÎÆ°ºî¤ËÌäÂ꤬¤¢¤ë¤Î¤Ç¡¤°Ê²¼¤Î¤è¤¦¤ËÂн褷¤Æ¤ª¤¯.
¤Á¤Ê¤ß¤Ë¡¤¤³¤ÎÂнè¤Ï
http://wald.intevation.org/tracker/download.php/29/220/1079/350/10_fix_gpgme.dpatch
¤Ç¥Ñ¥Ã¥Á¤Î·Á¤ÇÄ󶡤µ¤ì¤Æ¤¤¤ë.
cd /usr/ports/security/openvas-libnasl make configure cd work/openvas-libnasl-2.0.1/nasl cp nasl_signature.c nasl_signature.c.ORG
¤È¤·¤Æ¤«¤é¡¤emacs ¤ä vi ¤Ç nasl_signature.c ¤òÆɤ߹þ¤ß¡¤173¹Ô¤¢¤¿¤ê¤ò°Ê²¼¤Î¤è¤¦¤ËÊÔ½¸¤¹¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤ÀÖ»ú¤Î¹Ô¤ò½ñ¤Â¤¹.
gpgme_ctx_t ctx = NULL;
char * gpghome = determine_gpghome();
gpgme_check_version (NULL);
err = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);
if (err)
{
print_gpgme_error("gpgme_engine_check_version", err);
¤³¤ì¤Ç½¤Àµ¤¬ºÑ¤ó¤À¤Î¤Ç¡¤¤¢¤È¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤Î³¤.
cd ../../.. make make install rehash
¤µ¤Æ¡¤¸å¤Ï»Ä¤ê¤Î¤â¤Î¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦.
portinstall openvas-server rehash portinstall openvas-plugins rehash
libnet, coreutils, rsync, jbigkit ¤Ê¤É¤Î¡¤Â¾¤ËɬÍפʤâ¤Î¤â¤³¤Î²áÄø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë.
¤Ê¤ª¡¤rsync ¤Î¥ª¥×¥·¥ç¥ó¤òÁª¤Ù¤È¤¤¤ï¤ì¤¿¤é¡¤
¥Ç¥Õ¥©¥ë¥È¤Î¤Þ¤Þ(SSH ¤Î¤ß¥Á¥§¥Ã¥¯)¤Ç¤è¤¤¤À¤í¤¦.
¼¡¤Ë¡¤¥¯¥é¥¤¥¢¥ó¥È¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦.
¤³¤Á¤é¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë´Êñ¤Ë
portinstall openvas-client rehash
¤È¤¹¤ì¤Ð¤è¤¤.
ÀßÄê †
¤Þ¤º¤Ï¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤ËÌܤòÄ̤½¤¦.
¤È¤ê¤¢¤¨¤º¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿ openvas ·Ï¤Î¤â¤ÎÁ´¤Æ¤Ë¤Ä¤¤¤Æ¥Á¥§¥Ã¥¯¤¹¤ë.
openvas-libraries ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è †
(¥é¥¤¥Ö¥é¥ê¤Î¥ê¥ó¥¯±¾¡¹¤Î¾¤Ë)
openvas-libraries has been sucessfully installed.
Make sure that /usr/local/bin is in your PATH before you
continue
oepnvas-libnasl ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è †
openvas-libnasl has been sucessfully installed.
Make sure that /usr/local/bin is in your PATH before you
continue
openvas-server ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è †
openvas-server has been sucessfully installed.
Make sure that /usr/local/bin and /usr/local/sbin are in your PATH before
you continue.
openvasd has been installed into /usr/local/sbin
openvas-plugins ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è †
(ÆäËÃíÌܤ¹¤Ù¤½ÐÎϤϤʤ¤)
openvas-client ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è †
(ÆäËÃíÌܤ¹¤Ù¤½ÐÎϤϤʤ¤)
°Ê¾å¤Î¥í¥°¤ò¤ß¤ë¤È¡¤ÆäËÃí°ÕÅÀ¤Ï̵¤µ¤½¤¦¤À.
¤½¤³¤Ç¡¤¼¡¤ËÀµ¼°¤Ê¾ðÊó¤òÍê¤ê¤Ë¤·¤è¤¦.
¸ø¼° web ¤Î¾ðÊó¤òÍê¤ê¤ËÀßÄê †
http://www.openvas.org/compendium/configuring-openvas-server.html
¤ò¸«¤Ê¤¬¤é¡¤¼¡¤Î¤è¤¦¤ËÀßÄꤷ¤è¤¦.
¤Þ¤º
openvas-mkcert
¤È¤·¤Æ¡¤¥µ¡¼¥Ð¤Î¾ÚÌÀ½ñ¤òºî¤ë¤³¤È¤Ë¤Ê¤ë.
¤¹¤ë¤È¡¤SSL ´Ø·¸¤Ç°ÊÁ°¤Ë¤â¤ä¤Ã¤¿¼¡¤Î¤è¤¦¤Ê¤ä¤ê¼è¤ê¤ò¤¹¤ë¤³¤È¤Ë¤Ê¤ë.
ÀÄ»ú¤¬Âбþ/ÆþÎϤǤ¢¤ë.
-------------------------------------------------------------------------------
Creation of the OpenVAS SSL Certificate
-------------------------------------------------------------------------------
This script will now ask you the relevant information to create the SSL certificate of OpenVAS.
Note that this information will *NOT* be sent to anybody (everything stays local), but anyone with the ability to connect to your OpenVAS daemon will be able to retrieve this information.
CA certificate life time in days [1460]: ¤½¤Î¤Þ¤Þ enter ¤ò²¡¤·¤Æ¤è¤¤¤À¤í¤¦
Server certificate life time in days [365]: ¤½¤Î¤Þ¤Þ enter ¤ò²¡¤·¤Æ¤è¤¤¤À¤í¤¦
Your country (two letter code) [FR]: JP
Your state or province name [none]: Osaka
Your location (e.g. town) [Paris]: Toyonaka
Your organization [OpenVAS Users United]: Osaka Univ.
-------------------------------------------------------------------------------
Creation of the OpenVAS SSL Certificate
-------------------------------------------------------------------------------
Congratulations. Your server certificate was properly created.
/usr/local/etc/openvas/openvasd.conf updated
The following files were created:
. Certification authority:
Certificate = /usr/local/openvas/lib/openvas/CA/cacert.pem
Private key = /usr/local/openvas/lib/openvas/private/CA/cakey.pem
. OpenVAS Server :
Certificate = /usr/local/openvas/lib/openvas/CA/servercert.pem
Private key = /usr/local/openvas/lib/openvas/private/CA/serverkey.pem
Press [ENTER] to exit ¢« enter ¤ò²¡¤¹
¼¡¤Ë¡¤openvas ¥µ¡¼¥Ð¤ËÀܳ¤Ç¤¤ë¥æ¡¼¥¶¤ÎÀßÄê¤ò¹Ô¤¨¤È¤¤¤¦¤³¤È¤Ê¤Î¤Ç¡¤
openvas-adduser
¤È¤¹¤ë. ¤¹¤ë¤È¡¤°Ê²¼¤Î¤è¤¦¤Ê¤ä¤ê¼è¤ê¤ò¤¹¤ë¤³¤È¤Ë¤Ê¤ë.
Á°È¾¤Ï¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤ÎÀßÄê¤Ç¡¤¸åȾ¤Ï¤½¤Î¥æ¡¼¥¶¤¬Ä´¤Ù¤ë¤³¤È¤¬¤Ç¤¤ë¥¿¡¼¥²¥Ã¥È¤Î¥µ¡¼¥Ð¤òÀ©¸Â¤¹¤ëÀßÄê¤Ç¤¢¤ë.
0: not found
Using /var/tmp as a temporary file holder.
Add a new openvasd user
---------------------------------
Login : ¥æ¡¼¥¶Ì¾¤òÆþ¤ì¤ë. FreeBSD ¤Î¥æ¡¼¥¶Ì¾¤Ê¤É¤È´Ø·¸¤Ê¤¯¤Æ¤è¤¤
Authentication (pass/cert) [pass] : º£²ó¤Î¤è¤¦¤Ê»È¤¤Êý¤Ç¤Ï pass ¤Î¤Þ¤Þ¤Ç¤è¤¤
Login password : ¥Ñ¥¹¥ï¡¼¥É¤òÆþ¤ì¤ë. ²èÌ̤ˤϽФʤ¤
Login password (again) : ¥Ñ¥¹¥ï¡¼¥É¤òºÆÅÙÆþ¤ì¤ë. ¤³¤ì¤â²èÌ̤ˤϽФʤ¤
User rules
---------------
openvasd has a rules system which allows you to restrict the hosts that paoon has the right to test.
For instance, you may want him to be able to scan his own host only.
Please see the openvas-adduser(8) man page for the rules syntax.
Enter the rules for this user, and hit ctrl-D once you are done:
(the user can have an empty rules set) ¤³¤³¤«¤é¡¤¤³¤Î¥æ¡¼¥¶¤Î¥¿¡¼¥²¥Ã¥ÈÀ©¸Â¤òÀßÄꤹ¤ë
accept 192.168.125.0/24 ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯
accept 127.0.0.0/24 ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯
default deny ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯
^D ¢« ctrl ¥¡¼¤ò²¡¤·¤Ê¤¬¤é d ¥¡¼¤ò²¡¤¹
°Ê²¼¡¤³Îǧ¤Î¤¿¤á¤ËÆþÎϾðÊ󤬽ÐÎϤµ¤ì¤ëLogin : ¥æ¡¼¥¶Ì¾
Password : ***********
Rules :
accept 192.168.125.0/24
accept 127.0.0.0/24
default deny
Is that ok? (y/n) [y] ÌäÂ꤬¤Ê¤±¤ì¤Ð y ¤ÈÅú¤¨¤è¤¦
user added.
¤³¤ì¤Ç openvas ¥µ¡¼¥Ð¤ò»È¤¦¥æ¡¼¥¶ÀßÄ꤬ºÑ¤ó¤À.
¤Á¤Ê¤ß¤Ë¡¤¤³¤Î¥æ¡¼¥¶ÀßÄê¤Ï
/usr/local/openvas/lib/openvas/users/
¤Î²¼¤Ë¥Õ¥¡¥¤¥ë¤¬ÃÖ¤«¤ì¤ë.
ÀßÄê¤òÊѹ¹¤·¤¿¤¤¤È¤¤Ï¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤ò½ñ¤´¹¤¨¤ì¤ÐÎɤ¤.
¼¡¤Ë¡¤¥¹¥¥ã¥Ê¥×¥é¥°¥¤¥ó(ÍÍ¡¹¤Êµ¡Ç½¤¬¥×¥é¥°¥¤¥ó¤Ë¤Ê¤Ã¤Æ¤¤¤Æ¡¤Æü¡¹¹¹¿·¤µ¤ì¤Æ¤¤¤ë)¤ò¹¹¿·¤·¤Æ¤ª¤³¤¦.
openvas-nvt-sync
¤È¤¹¤ì¤Ð¤è¤¤. ¾¯¤·»þ´Ö¤Ï¤«¤«¤ë¤¬.
OpenVAS ¥µ¡¼¥Ð¤Îµ¯Æ° †
¤³¤³¤Þ¤ÇÌäÂ꤬¤Ê¤±¤ì¤Ð¡¤
openvasd -D
¤È¤·¤Æ¥µ¡¼¥Ð¤ò¥Ç¡¼¥â¥ó¤È¤·¤Æµ¯Æ°¤·¤è¤¦. ¥¹¥¥ã¥Ê¥×¥é¥°¥¤¥ó¤òÆɤ߹þ¤à¤Î¤Ë½é²ó¤À¤±·ë¹½»þ´Ö¤¬¤«¤«¤ë¤Î¤Ç¤·¤Ð¤é¤¯ÂԤȤ¦.
³Î¤«¤Ëµ¯Æ°¤·¤¿¤«¤É¤¦¤«¤ò¡¤
lsof -i4
¤È¤·¤Æ³Î¤«¤á¤è¤¦. port 9390 ¤Ç openvasd ¤¬ÂÔ¤Á¹½¤¨¤Æ¤¤¤ë¤Ê¤é¤Ð OK ¤À.
OpenVAS ¥¯¥é¥¤¥¢¥ó¥È¤Îµ¯Æ° †
¤µ¤Æ¡¤OpenVAS ¥¯¥é¥¤¥¢¥ó¥È¤òµ¯Æ°¤·¤è¤¦.
¤³¤ì¤Ï X window ¤ò¤Ä¤«¤¦¤Î¤Ç X ¤òΩ¤Á¾å¤²¤Æ¤«¤é¤À.
¤Á¤Ê¤ß¤Ë gnome ¥é¥¤¥Ö¥é¥ê¤¬¤¢¤ì¤Ð, gnome ¤½¤Î¤â¤Î¤òÆ°¤«¤µ¤Ê¤¯¤Æ¤â¤è¤¤.
°Ê²¼¤Î¥³¥Þ¥ó¥É¤òÂǤÁ¹þ¤â¤¦(Âçʸ»ú¾®Ê¸»ú¤Ï¶èÊ̤¹¤ë).
OpenVAS-Client &
¤¹¤ë¤È¡¤
¤Î¤è¤¦¤Ê²èÌ̤ǥ¯¥é¥¤¥¢¥ó¥È¤¬µ¯Æ°¤¹¤ë¤Ï¤º¤À.
ÀȼåÀ¸¡ºº¤Î½àÈ÷ †
¤É¤Î¥Þ¥·¥ó¤Ë¤¿¤¤¤·¤Æ¡¤¤É¤Î¤è¤¦¤Ê¸¡ºº¤ò¹Ô¤¦¤Î¤«¤È¤¤¤¦ÆâÍƤÎÀßÄ꤬½àÈ÷¤È¤·¤ÆɬÍפǤ¢¤ë.
¤½¤Î¤¢¤È¡¤¥µ¡¼¥Ð¤ËÀܳ¤·¤Æ¡¤¥µ¡¼¥Ð¤Ë¸¡ºº¤ò¹Ô¤ï¤»¤ë¤³¤È¤Ë¤Ê¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤ÀßÄê¤Ï¥¯¥é¥¤¥¢¥ó¥È¤Ç°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ë.
task, scope ¤òÀßÄꤹ¤ë †
task, scope ¤È¤Ï¸¡ººÆâÍƤÎÀßÄêñ°Ì¤È»×¤¨¤Ð¤è¤¤.
¤Þ¤º¤Ï¤³¤ì¤òºî¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤¡¥
¤Þ¤º¡¤¥á¥Ë¥å¡¼¤Î Task -> New ¤òÁª¤ó¤Ç¡¤¿·¤·¤¤¥¿¥¹¥¯¤òºî¤ë.
¤³¤Î¤È¤¡¤¿·¤·¤¯ºî¤Ã¤¿¥¿¥¹¥¯¤Ë̾Á°¤¬¤Ä¤¤¤Æ¤¤¤Ê¤¤¤Î¤Ç¡¤Å¬Åö¤Ë̾Á°¤ò¤Ä¤±¤Æ¤ª¤³¤¦.
¼¡¤Ë¡¤¥á¥Ë¥å¡¼¤Î Scope -> New ¤òÁª¤ó¤Ç¡¤º£ºî¤Ã¤¿¥¿¥¹¥¯¤ÎÃæ¤Ë¿·¤·¤¤¥¹¥³¡¼¥×¤òºî¤ë.
¤³¤Î¤È¤¡¤¿·¤·¤¯ºî¤Ã¤¿¥¹¥³¡¼¥×¤Ë¤â̾Á°¤¬¤Ä¤¤¤Æ¤¤¤Ê¤¤¤Î¤Ç¡¤Å¬Åö¤Ë̾Á°¤ò¤Ä¤±¤Æ¤ª¤³¤¦.
ºÇ¾®¸Â¤ÎÀßÄê †
¤¢¤È¤Ï¤³¤Î¥¹¥³¡¼¥×¤ËÂФ·¤ÆÀßÄê¤ò¹Ô¤¦.
¤È¤¤¤Ã¤Æ¤â¤Þ¤º¤Ï¤Û¤Üɸ½à¤Ç¤è¤¤¤Î¤Ç¡¤°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤.
¤Þ¤º¡¤ÈóÇ˲õ¸¡ºº(¥¿¡¼¥²¥Ã¥È¥µ¡¼¥Ð¤Ø¤Î±Æ¶Á̵¤·)¤ò¹Ô¤¦¤Î¤«¡¤Ç˲õ¸¡ºº(¥¿¡¼¥²¥Ã¥È¥µ¡¼¥Ð¤Î¥µ¡¼¥Ó¥¹¤¬Íî¤Á¤ë²ÄǽÀ¤¢¤ê.ºÆµ¯Æ°¤¹¤ì¤Ð±Æ¶Á¤Ï¾Ã¤¨¤ë)¤ò¹Ô¤¦¤Î¤«¤ò·è¤á¤ë.
ÈóÇ˲õ¸¡ºº¤ÏÉûºîÍѤ¬¤Ê¤¤¤¬¡¤¸·¤·¤¤¸¡ºº¤Ï¤Ç¤¤Ê¤¤.
Ç˲õ¸¡ºº¤Ï¡¤¥µ¡¼¥Ð¤Î¥Ç¡¼¥â¥ó¤¬Íî¤Á¤ë²ÄǽÀ¤¬¤¢¤ë¤¬(Íî¤Á¤ë¤«¤É¤¦¤«¤ò¸¡ºº¤¹¤ë)¡¤¸·¤·¤¯¸¡ºº¤Ç¤¤ë.
º£²ó¤Ï¤Þ¤¢ÈóÇ˲õ¤Ë¤·¤Æ¤ª¤³¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤±¦Â¦¤Î Options ¥¿¥ÖÃæ¤Î General ¤òÁªÂò¤¹¤ë¤È¡¤¤ä¤ä²¼Â¦¤Ë "Safe checks" ¤È¤¤¤¦¹àÌܤ¬¤¢¤ê¡¤¤³¤ì¤¬¥Á¥§¥Ã¥¯¤µ¤ì¤Æ¤¤¤ì¤ÐÈóÇ˲õ¡¤¥Á¥§¥Ã¥¯¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤ÐÇ˲õ¤È¤¤¤¦¤³¤È¤Ë¤Ê¤ë.
¼¡¤Ë¡¤¥¿¡¼¥²¥Ã¥È¤ò·è¤á¤ë.
ºÇ½é¤Ï¼«Ê¬¼«¿È¤¬¤è¤¤¤À¤í¤¦.
¤½¤³¤Ç¡¤±¦Â¦¤Î Options ¥¿¥ÖÃæ¤Î Target selection ¤òÁªÂò¤¹¤ë¤È¡¤"Target(s):" ¤È¤¤¤¦¹àÌܤ¬¤¢¤ë¤Î¤Ç¡¤¤³¤³¤ÇÀßÄꤹ¤ì¤Ð¤è¤¤.
¤ª¤½¤é¤¯¥Ç¥Õ¥©¥ë¥È¤Ç "localhost" (¼«Ê¬¼«¿È¤Î¤³¤È)¤È½ñ¤«¤ì¤Æ¤¤¤ë¤À¤í¤¦¤«¤é¡¤¤½¤Î¾ì¹ç¤Ï¤½¤Î¤Þ¤Þ¤Ç¤è¤¤.
¤³¤ì¤ÇºÇ¾®¸Â¤ÎÀßÄ꤬´°Î»¤À.
¥¯¥é¥¤¥¢¥ó¥È¤ò¥µ¡¼¥Ð¤ËÀܳ¤¹¤ë †
¼¡¤Ë¡¤¥¯¥é¥¤¥¢¥ó¥È¤ò¥µ¡¼¥Ð¤ËÀܳ¤¹¤ë. ¤½¤¦¤·¤Ê¤¤¤È¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥µ¡¼¥Ð¤Ë»ØÎ᤬½Ð¤»¤Ê¤¤¤·¡¤·ë²Ì¤â¼õ¤±¼è¤ì¤Ê¤¤.
¶ñÂÎŪ¤Ë¤Ï¡¤(ÀßÄꤷ¤¿¥¹¥³¡¼¥×¤¬ÁªÂò¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Îǧ¤·¤¿¾å¤Ç), ¥á¥Ë¥å¡¼¤Î File -> Connect ¤òÁªÂò¤¹¤ë.
¤¹¤ë¤È¡¤ÀܳÀè¤Èǧ¾ÚÊýË¡¤ÎÀßÄê²èÌ̤¬½Ð¤ë. ÀܳÀè¤Ï¥Ç¥Õ¥©¥ë¥È¤Î localhost, port 9390 ¤ÇÌäÂê¤Ê¤¤. ǧ¾Ú¤Ï¡¤Àè¤Û¤É¥Ñ¥¹¥ï¡¼¥ÉÊý¼°¤òÁªÂò¤·¤¿¤Î¤Ç¡¤Àè¤Û¤ÉÀßÄꤷ¤¿¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤òÆþÎϤ·¤Æ¡¤±¦²¼¤Î OK ¤ò²¡¤½¤¦.
½é¤á¤ÆÀܳ¤¹¤ë¤È¤¤Ï SSL ¾ÚÌÀ½ñ¤Î°·¤¤¤Ë¤Ä¤¤¤Æ¿Ò¤Í¤é¤ì¤ë¤¬¡¤°ìÈÖ¾å¤òÁª¤ó¤Ç¡¤¤¢¤È¤Ï OK ¤ÇÎɤ¤.
¤³¤ì¤ÇÀܳ¤µ¤ì¤ë¤³¤È¤Ë¤Ê¤ë. ¤¿¤À¤·¡¤½é²ó¤Î¤ß¥×¥é¥°¥¤¥ó¤Î¥À¥¦¥ó¥í¡¼¥É¤Ç¾¯¤·ÂÔ¤¿¤µ¤ì¤ë¤Î¤Ç¤æ¤Ã¤¯¤êÂԤȤ¦.
¤·¤Ð¤é¤¯¤¹¤ë¤È
¤È¤Ê¤ê¡¤¥À¥¦¥ó¥í¡¼¥É½ªÎ»¤ÎÄÌÃΤ¬½Ð¤ë¤Ï¤º¤Ê¤Î¤Ç¡¤¤³¤³¤Ç OK ¤ò²¡¤»¤Ð¤è¤¤.
ÀȼåÀ¸¡ºº¤ò¹Ô¤¦ †
¤³¤ì¤Ç¤¢¤È¤Ï¸¡ºº¤ò¼Â»Ü¤¹¤ë¤À¤±¤Ç¤¢¤ë.
¤³¤ì¤Ï¤â¤¦´Êñ¤Ç¡¤¥á¥Ë¥å¡¼¤Î Scope -> Execute ¤òÁªÂò¤¹¤ì¤Ð¤è¤¤.
¤¹¤ë¤È¡¤¤·¤Ð¤é¤¯¤·¤Æ¸¡ºº¤¬¤Ï¤¸¤Þ¤ê¿ÊĽÅÙ¤¬É½¼¨¤µ¤ì¤ë¤Î¤Ç¡¤¤¢¤È¤Ï¤¸¤Ã¤ÈÂԤƤФ褤.
¸¡ºº·ë²Ì¤ò¥Á¥§¥Ã¥¯ †
¸¡ºº·ë²Ì¤Ï¥¯¥é¥¤¥¢¥ó¥È¤Ç "report" ¹àÌܤò¥À¥Ö¥ë¥¯¥ê¥Ã¥¯¤¹¤ë¤Ê¤É¤¹¤ì¤Ð¤½¤Î¤Þ¤Þ¸«¤é¤ì¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë.
´í¸±ÅÙ¤¬¹â¤¤¤È»×¤ï¤ì¤ëÊó¹ð¤Û¤É·Ù¹ð¿§¤¬»È¤ï¤ì¤¿¥¢¥¤¥³¥ó¤¬¤Ä¤¤¤Æ¤¤¤¿¤ê¤¹¤ë¤Î¤Ç¡¤¾õ¶·¤Ï°ìÌÜÎÆÁ³¤À¤í¤¦.
¼«Ê¬¤Î¥Þ¥·¥ó¤Î¸¡ºº·ë²Ì¤ò¸«¤Æ¡¤´í¸±¤È»×¤ï¤ì¤ëÊó¹ð¤ËÌܤòÄ̤½¤¦(ÆÃ¤Ë Apache ¤Î mod_proxy_ftp ¤Ë´Ø¤·¤Æ¤ÎÉôʬ).
¤½¤Î¾å¤Ç¡¤¤É¤¦¤¹¤Ù¤¤«È½ÃǤ»¤è.
Âкö¤¬É¬ÍפÈȽÃǤ·¤¿¾ì¹ç¤Ï¡¤Âкö¤ò»Ü¤½¤¦.
¤Ê¤ª¡¤¸¡ºº·ë²Ì¤Ï¥á¥Ë¥å¡¼¤Ç Report -> Export ¤òÁªÂò¤¹¤ë¤³¤È¤Ç¥Õ¥¡¥¤¥ë¤Ë½ÐÎϤ¹¤ë¤³¤È¤â¤Ç¤¡¤·Á¼°¤Ï¤¤¤í¤¤¤íÁª¤Ù¤ë.
¾¤Î¥µ¡¼¥Ð¤ò¥¿¡¼¥²¥Ã¥È¤È¤·¤Æ¸¡ºº¤ò¤·¤Æ¤ß¤ë †
°ìÄ̤êÂкö¤Ê¤É¤¬¤Ç¤¤¿¡¤¤È´¶¤¸¤¿¤é¡¤Æ±¤¸Éô²°¤Î¿Í¤Ë¶¨ÎϤ·¤ÆÌã¤Ã¤Æ¡¤¸æ¸ß¤¤¤ËÁê¼ê¤Î¿Í¤Î¥µ¡¼¥Ð¤ò¥¿¡¼¥²¥Ã¥È¤È¤·¤Æ¸¡ºº¤òºÆ¤Ó¹Ô¤Ã¤Æ¤ß¤è¤¦.
Ç˲õ¸¡ºº¤â»î¤·¤Æ¤ß¤è¤¦("safe check" ¤Î¹àÌܤΥÁ¥§¥Ã¥¯¤ò³°¤¹).
ÀȼåÀ¸¡ºº¤Ï¡Ö¥¢¥¿¥Ã¥¯¤Î°ìÉô¡×¤È¸«¤Ê¤µ¤ì¤ë¤Î¤Ç¡¤Áê¼ê¤Îµö²Ä̵¤·¤Ë¤ÏÀäÂФ˹Ԥï¤Ê¤¤¤³¤È!!
Ìϵ¼¥¢¥¿¥Ã¥¯ †
¤µ¤Æ¡¤¥»¥¥å¥ê¥Æ¥£¤Ë¤Ä¤¤¤Æ¤ÎÁí¹çŪ¤Ê´¶³Ð¤òÍܤ¦¤¿¤á¤Ë¡¤¤³¤ì¤Þ¤Ç¤ÎÃμ±¤Ê¤É¤òÍøÍѤ·¤Æ¡¤¥µ¡¼¥Ð¤Ø¤Î¥¢¥¿¥Ã¥¯¤òÌϵ¼Åª¤Ë¹Ô¤Ã¤Æ¤ß¤è¤¦.
¤³¤ì¤Ë¤è¤êµÕ¤Ë¡ÖËɸ椹¤ë¤Ë¤Ï¤É¤¦¤·¤¿¤é¤è¤¤¤«¡×¤¬¤è¤ê¤è¤¯Íý²ò¤Ç¤¤ë¤Ï¤º¤Ç¤¢¤ë.
¤Ê¤ª¡ÖÌϵ¼Åª¤Ë¡×¤È¤¤¤¦¤Î¤Ï¡¤PC ¤òÇ˲õ¤·¤Æ¥Ï¡¼¥É¥Ç¥£¥¹¥¯¤òÈ´¤½Ð¤¹¡¤ÆâÉô¤Î¥Õ¥¡¥¤¥ë¤ò²õ¤¹¤Ê¤É¤·¤Æ¥¢¥¿¥Ã¥¯¤òÀ®¸ù¤µ¤»¤ë¡¤¤Ê¤É¤Î¡Ö¸å¤Ë»Ù¾ã¤¬»Ä¤ê¤½¤¦¤Ê¡×ÊýË¡¤ÏÈò¤±¤Æ¤ª¤¯¡¤¤È¤¤¤¦¤Æ¤¤¤É¤Î°ÕÌ£¤Ç¤¢¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤°Ê²¼¤Î¤è¤¦¤Ë¹Ô¤ª¤¦.
¥Ñ¥¹¥ï¡¼¥É¤ò¼ºÇ°¤·¤¿¤ÈÁÛÄꤷ¤Æ¼«Ê¬¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó †
¼«Ê¬¤Î¥Ñ¥¹¥ï¡¼¥É¤òÁ´¤Æ¼ºÇ°¤·¤¿¤¬¡¤¤É¤¦¤·¤Æ¤âÆɤߤ¿¤¤¥Õ¥¡¥¤¥ë¤¬Â¸ºß¤¹¤ë¤Î¤Ç¤Ê¤ó¤È¤«¤·¤¿¤¤¤È¤¤¤¦ÁÛÄê¤Î¤â¤È¤Ç¡¤¼«Ê¬¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó¤Ê¤¤¤·¤Ï¥Õ¥¡¥¤¥ë¥¢¥¯¥»¥¹¤¬²Äǽ¤Ê¾õÂ֤ˤޤǤâ¤Ã¤Æ¤¤¤Ã¤Æ¤ß¤è¤¦.
¤³¤³¤Ë¤Ï¤¢¤¨¤ÆÊýË¡¤Ï½ñ¤«¤Ê¤¤¤Î¤Ç¡¤¤è¤¯¹Í¤¨¤Æ¹Ô¤ª¤¦.
¼ê´Ö¤ò¤«¤±¤Æ¤âÎɤ±¤ì¤Ð¡¤(¸¶ÍýŪ¤Ë¤Ï)²¿Ä̤꤫»×¤¤¤Ä¤¯¤À¤í¤¦.
¥Ñ¥¹¥ï¡¼¥É¤ò¼ºÇ°¤·¤¿¤ÈÁÛÄꤷ¤Æ¾¿Í¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó †
¾å¤ÈƱÍͤλî¤ß¤ò¡¤Â¾¿Í¤Î¥Þ¥·¥ó¤ËÂФ·¤Æ¹Ô¤Ã¤Æ¤ß¤è¤¦. ¤â¤Á¤í¤ó¡¤»öÁ°¤Ë¤½¤Î¥Þ¥·¥ó¤Î´ÉÍý¼Ô¤Ëµö²Ä¤òÆÀ¼ê¤«¤é¹Ô¤¦¤³¤È.
´ÉÍý¼Ô¤Îµö²Ä¥Ê¥·¤Ë¤³¤¦¤·¤¿¹Ô°Ù¤ò¹Ô¤¦¤³¤È¤ÏÀäÂФˤ·¤Ê¤¤¤è¤¦¤Ë.
¥ì¥Ý¡¼¥È †
ÀȼåÀ¸¡ºº¤Î·ë²Ì¤ª¤è¤Ó¤½¤ÎÂкöÅù¤È¡¤Ìϵ¼¥¢¥¿¥Ã¥¯¤Î·ë²Ì¤Ë¤Ä¤¤¤ÆÊó¹ð¤»¤è.
¤Þ¤¿¡¤¼ÂºÝ¤Ë¹Ô¤ï¤Ê¤«¤Ã¤¿¤â¤Î¤â´Þ¤á¡¤¥¢¥¿¥Ã¥¯¤ÎÊýË¡¤Ë¤Ä¤¤¤Æ»×¤¤¤Ä¤¯¤â¤Î¤ò²òÀ⤻¤è.
¤½¤·¤Æ¡¤¥¢¥¿¥Ã¥¯¤ÎÊýË¡¤ËÂФ·¡¤³Æ¡¹ËɸæÊýË¡¤ò¹Í»¡¤»¤è.
¤â¤Á¤í¤ó³Æ¼«¤Î
- ½ê°(³ØÉô¡¤³Ø²Ê)
- ³ØÀÒÈÖ¹æ
- ³Øǯ
- »á̾
- Æü»þ
- ´Î¿´¤Î¥ì¥Ý¡¼¥ÈÆâÍÆ(ÆÀ¤¿Ãθ«¡¤ºî¶È¤Ë¤Ä¤¤¤Æµ¤¤Å¤¤¤¿¤³¤ÈÅù)
¤ò½ñ¤¯¤Î¤ò˺¤ì¤Ê¤¤¤è¤¦¤Ë.
about Icons †
Some icons in this page are downloadable at ICONFINDER.
The "note" icon designed by Marco Martin is distributed with the LGPL licence
and the "warning" icon designed by Alexandre Moore with the GPL licence.
Thank you Marco and Alexandre!
źÉÕ¥Õ¥¡¥¤¥ë: report-export-form.png 120·ï [¾ÜºÙ] safe-check.png 112·ï [¾ÜºÙ] task-name.png 9·ï [¾ÜºÙ] task-new.png 114·ï [¾ÜºÙ] scope-execute.png 115·ï [¾ÜºÙ] openvas-scanning.png 127·ï [¾ÜºÙ] connect-server.png 147·ï [¾ÜºÙ] target-localhost.png 105·ï [¾ÜºÙ] rsync-options.png 129·ï [¾ÜºÙ] OpenVAS-Client.png 131·ï [¾ÜºÙ] ssl-one.png 117·ï [¾ÜºÙ] openvas-connect-and-downloaded-plugin.png 127·ï [¾ÜºÙ] scope-name.png 109·ï [¾ÜºÙ] warning.png 134·ï [¾ÜºÙ] scope-new.png 111·ï [¾ÜºÙ] report.png 143·ï [¾ÜºÙ] notes.png 181·ï [¾ÜºÙ] report-export.png 131·ï [¾ÜºÙ] file-connect.png 121·ï [¾ÜºÙ]