¼ø¶È»ñÎÁ/12

ÀȼåÀ­¸¡ºº

¥Í¥Ã¥È¥ï¡¼¥¯¥µ¡¼¥Ð¤È¤·¤Æ¤ÎÀȼåÀ­¤¬¤É¤ì¤¯¤é¤¤¤Î¤â¤Î¤«¡¤ÄêÎÌŪ¤ËÇÄ°®¤¹¤ë¤Î¤Ï¤Ê¤«¤Ê¤«Æñ¤·¤¤.
¤·¤«¤·¡¤Æñ¤·¤¤¤«¤é¤È¤¤¤Ã¤ÆÊüÃÖ¤·¤Æ¤ª¤¯¤È¤Þ¤¹¤Þ¤¹¾õ¶·¤Ï°­¤¯¤Ê¤ê¤«¤Í¤Ê¤¤¤Î¤Ç¡¤¤³¤¦¤·¤¿ÇÄ°®¤Ë¤Ä¤¤¤ÆÌòΩ¤Ä¥Ä¡¼¥ë¤òÀѶËŪ¤Ë»È¤ª¤¦.

¤³¤¦¤·¤¿ÌÜŪ¤Ë¤Ï(¥Í¥Ã¥È¥ï¡¼¥¯)¥¹¥­¥ã¥Ê¤È¸Æ¤Ð¤ì¤ë¥Ä¡¼¥ë¤¬¤¢¤ë.
°Ê²¼¡¤Í­Ì¾¤Ê¤â¤Î¤òµó¤²¤Æ¤ª¤³¤¦.

SAINT (µì SATAN)ÀȼåÀ­¤òÃΤ뤿¤á¤Î¥¹¥­¥ã¥Ê¤È¤·¤Æ¤ÎÏ·ÊÞŪ¥Ä¡¼¥ë. SATAN ¤È¤·¤ÆÅо줷¤¿¤È¤­¤ÏʪµÄ¤ò¤«¤â¤·¤¿.
NessusSAINT ¤è¤ê¤â»È¤¤¤ä¤¹¤¤¡¤¥ì¥Ý¡¼¥È¤¬Ê¬¤«¤ê°×¤¤¡¤¥¹¥­¥ã¥Êµ¡Ç½¤ò¥×¥é¥°¥¤¥ó²½¤·¤Æ¤¢¤ë¤Ê¤É¤¬ÆÃħ. ¤¿¤À¤·¡¤ver.3.0 ¤«¤é GPL ¤Ç¤Ê¤¯¤Ê¤Ã¤¿(¸Ä¿ÍŪÍøÍѤÏ̵ÎÁ¤Ç¤Ç¤­¤ë).
OpenVASNessus ¤Î¥é¥¤¥»¥ó¥¹¤¬Êѹ¹¤Ë¤Ê¤Ã¤¿¤Î¤Ç³«È¯¤µ¤ì¤¿¡¤Nessus ¤Î¸å·Ñ¥½¥Õ¥È¥§¥¢.

OpenVAS ¤Î¥¤¥ó¥¹¥È¡¼¥ë, ÀßÄê

¤µ¤Æ¡¤º£²ó¤Ï¥é¥¤¥»¥ó¥¹Åª¤ËÌäÂê¤ÎÀ¸¤¸¤Ê¤¤¥Ä¡¼¥ë¤È¤·¤Æ OpenVAS ¤òÍøÍѤ·¤è¤¦.
OpenVAS ¤ÏÀȼåÀ­¥Á¥§¥Ã¥¯¤ò¼ÂºÝ¤Ë¹Ô¤¦¥µ¡¼¥Ð¤È¡¤¤½¤ì¤Ë»Ø¼¨¤ò½Ð¤¹¥¯¥é¥¤¥¢¥ó¥È¤Î¥µ¡¼¥Ð¥¯¥é¥¤¥¢¥ó¥ÈÊý¼°¤Ê¤Î¤Ç¡¤¥µ¡¼¥Ð¤È¥¯¥é¥¤¥¢¥ó¥È¤ò³Æ¡¹¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë.

¤½¤ÎÁ°¤Ë¤Þ¤º¡¤¤¤¤Ä¤â¤Î½àÈ÷

 portsnap fetch; portsnap update

¤ò¤·¤Æ¤ª¤³¤¦.

¥¤¥ó¥¹¥È¡¼¥ë

notes.png ¤Þ¤º¥µ¡¼¥Ð¤È¡¤¤½¤ì¤ËɬÍפʥ饤¥Ö¥é¥ê3¤Ä¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦(psearch openvas ¤È¤¹¤ì¤Ð¡¤¤³¤ì¤é¤¬¥ê¥¹¥È¥¢¥Ã¥×¤µ¤ì¤ë¤Î¤Çʬ¤«¤ë¤Ï¤º).

ËÜÍè¤Ê¤é¤¤¤Ä¤â¤Î¤è¤¦¤Ë portinstall ¤Ê¤É¤Ç¥µ¡¼¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤À¤±¤ÇɬÍפʥ饤¥Ö¥é¥ê¤â¼«Æ°Åª¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë¤Î¤Ç¤½¤¦¤¹¤ë¤Î¤À¤¬¡¤º£²ó¤Ï¥é¥¤¥Ö¥é¥ê¤Î°ì¤Ä¤ËÌäÂ꤬¤¢¤ê¡¤¼ê¤Ç½¤Àµ¤ò»Ü¤¹É¬Íפ¬¤¢¤ë¤Î¤Ç½çÈ֤˥饤¥Ö¥é¥ê¤òÆþ¤ì¤Æ¤¤¤³¤¦.
pkg_info ¤Ç°Í¸´Ø·¸¤òÄ´¤Ù¤ë¤È¡¤

  1. openvas-libraries
  2. openvas-libnasl
  3. openvas-server
  4. openvas-plugins

¤Î½ç½ø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëɬÍפ¬¤¢¤ë¤³¤È¤¬Ê¬¤«¤ë(¤³¤ì°Ê³°¤Î½ç½ø¤Ç¤Ï¤Ç¤­¤Ê¤¤).
¤½¤³¤Ç¡¤¾å¤Î½ç½ø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë.

 portinstall openvas-libraries
 rehash

¼¡¤Ë openvas-libnasl ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤¬¡¤¤³¤Î¥é¥¤¥Ö¥é¥ê¤ÎÆ°ºî¤ËÌäÂ꤬¤¢¤ë¤Î¤Ç¡¤°Ê²¼¤Î¤è¤¦¤ËÂн褷¤Æ¤ª¤¯.
¤Á¤Ê¤ß¤Ë¡¤¤³¤ÎÂнè¤Ï
http://wald.intevation.org/tracker/download.php/29/220/1079/350/10_fix_gpgme.dpatch
¤Ç¥Ñ¥Ã¥Á¤Î·Á¤ÇÄ󶡤µ¤ì¤Æ¤¤¤ë.

 cd /usr/ports/security/openvas-libnasl
 make configure
 cd work/openvas-libnasl-2.0.1/nasl
 cp nasl_signature.c nasl_signature.c.ORG

¤È¤·¤Æ¤«¤é¡¤emacs ¤ä vi ¤Ç nasl_signature.c ¤òÆɤ߹þ¤ß¡¤173¹Ô¤¢¤¿¤ê¤ò°Ê²¼¤Î¤è¤¦¤ËÊÔ½¸¤¹¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤ÀÖ»ú¤Î¹Ô¤ò½ñ¤­Â­¤¹.

gpgme_ctx_t ctx = NULL;

char * gpghome = determine_gpghome();


gpgme_check_version (NULL);


err = gpgme_engine_check_version(GPGME_PROTOCOL_OpenPGP);


if (err)

{

print_gpgme_error("gpgme_engine_check_version", err);

¤³¤ì¤Ç½¤Àµ¤¬ºÑ¤ó¤À¤Î¤Ç¡¤¤¢¤È¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤Î³¤­.

 cd ../../..
 make
 make install
 rehash

¤µ¤Æ¡¤¸å¤Ï»Ä¤ê¤Î¤â¤Î¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦.

 portinstall openvas-server
 rehash
 portinstall openvas-plugins
 rehash

libnet, coreutils, rsync, jbigkit ¤Ê¤É¤Î¡¤Â¾¤ËɬÍפʤâ¤Î¤â¤³¤Î²áÄø¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë.
¤Ê¤ª¡¤rsync ¤Î¥ª¥×¥·¥ç¥ó¤òÁª¤Ù¤È¤¤¤ï¤ì¤¿¤é¡¤
rsync-options.png
¥Ç¥Õ¥©¥ë¥È¤Î¤Þ¤Þ(SSH ¤Î¤ß¥Á¥§¥Ã¥¯)¤Ç¤è¤¤¤À¤í¤¦.

¼¡¤Ë¡¤¥¯¥é¥¤¥¢¥ó¥È¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤è¤¦.
¤³¤Á¤é¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë´Êñ¤Ë

 portinstall openvas-client
 rehash

¤È¤¹¤ì¤Ð¤è¤¤.

ÀßÄê

¤Þ¤º¤Ï¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤ËÌܤòÄ̤½¤¦.
¤È¤ê¤¢¤¨¤º¥¤¥ó¥¹¥È¡¼¥ë¤·¤¿ openvas ·Ï¤Î¤â¤ÎÁ´¤Æ¤Ë¤Ä¤¤¤Æ¥Á¥§¥Ã¥¯¤¹¤ë.

openvas-libraries ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è

(¥é¥¤¥Ö¥é¥ê¤Î¥ê¥ó¥¯±¾¡¹¤Î¾¤Ë)

openvas-libraries has been sucessfully installed.

Make sure that /usr/local/bin is in your PATH before you

continue

oepnvas-libnasl ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è

openvas-libnasl has been sucessfully installed.

Make sure that /usr/local/bin is in your PATH before you

continue

openvas-server ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è

openvas-server has been sucessfully installed.

Make sure that /usr/local/bin and /usr/local/sbin are in your PATH before

you continue.

openvasd has been installed into /usr/local/sbin

openvas-plugins ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è

(ÆäËÃíÌܤ¹¤Ù¤­½ÐÎϤϤʤ¤)

openvas-client ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤è¤êÈ´¿è

(ÆäËÃíÌܤ¹¤Ù¤­½ÐÎϤϤʤ¤)

°Ê¾å¤Î¥í¥°¤ò¤ß¤ë¤È¡¤ÆäËÃí°ÕÅÀ¤Ï̵¤µ¤½¤¦¤À.
¤½¤³¤Ç¡¤¼¡¤ËÀµ¼°¤Ê¾ðÊó¤òÍê¤ê¤Ë¤·¤è¤¦.

¸ø¼° web ¤Î¾ðÊó¤òÍê¤ê¤ËÀßÄê

http://www.openvas.org/compendium/configuring-openvas-server.html
¤ò¸«¤Ê¤¬¤é¡¤¼¡¤Î¤è¤¦¤ËÀßÄꤷ¤è¤¦.
¤Þ¤º

 openvas-mkcert

¤È¤·¤Æ¡¤¥µ¡¼¥Ð¤Î¾ÚÌÀ½ñ¤òºî¤ë¤³¤È¤Ë¤Ê¤ë.
¤¹¤ë¤È¡¤SSL ´Ø·¸¤Ç°ÊÁ°¤Ë¤â¤ä¤Ã¤¿¼¡¤Î¤è¤¦¤Ê¤ä¤ê¼è¤ê¤ò¤¹¤ë¤³¤È¤Ë¤Ê¤ë.
ÀÄ»ú¤¬Âбþ/ÆþÎϤǤ¢¤ë.

-------------------------------------------------------------------------------

Creation of the OpenVAS SSL Certificate

-------------------------------------------------------------------------------


This script will now ask you the relevant information to create the SSL certificate of OpenVAS.

Note that this information will *NOT* be sent to anybody (everything stays local), but anyone with the ability to connect to your OpenVAS daemon will be able to retrieve this information.



CA certificate life time in days [1460]: ¤½¤Î¤Þ¤Þ enter ¤ò²¡¤·¤Æ¤è¤¤¤À¤í¤¦

Server certificate life time in days [365]: ¤½¤Î¤Þ¤Þ enter ¤ò²¡¤·¤Æ¤è¤¤¤À¤í¤¦

Your country (two letter code) [FR]: JP

Your state or province name [none]: Osaka

Your location (e.g. town) [Paris]: Toyonaka

Your organization [OpenVAS Users United]: Osaka Univ.



-------------------------------------------------------------------------------

Creation of the OpenVAS SSL Certificate

-------------------------------------------------------------------------------


Congratulations. Your server certificate was properly created.


/usr/local/etc/openvas/openvasd.conf updated

The following files were created:


. Certification authority:

Certificate = /usr/local/openvas/lib/openvas/CA/cacert.pem

Private key = /usr/local/openvas/lib/openvas/private/CA/cakey.pem


. OpenVAS Server :

Certificate = /usr/local/openvas/lib/openvas/CA/servercert.pem

Private key = /usr/local/openvas/lib/openvas/private/CA/serverkey.pem


Press [ENTER] to exit ¢« enter ¤ò²¡¤¹

¼¡¤Ë¡¤openvas ¥µ¡¼¥Ð¤ËÀܳ¤Ç¤­¤ë¥æ¡¼¥¶¤ÎÀßÄê¤ò¹Ô¤¨¤È¤¤¤¦¤³¤È¤Ê¤Î¤Ç¡¤

 openvas-adduser

¤È¤¹¤ë. ¤¹¤ë¤È¡¤°Ê²¼¤Î¤è¤¦¤Ê¤ä¤ê¼è¤ê¤ò¤¹¤ë¤³¤È¤Ë¤Ê¤ë.
Á°È¾¤Ï¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤ÎÀßÄê¤Ç¡¤¸åȾ¤Ï¤½¤Î¥æ¡¼¥¶¤¬Ä´¤Ù¤ë¤³¤È¤¬¤Ç¤­¤ë¥¿¡¼¥²¥Ã¥È¤Î¥µ¡¼¥Ð¤òÀ©¸Â¤¹¤ëÀßÄê¤Ç¤¢¤ë.

0: not found

Using /var/tmp as a temporary file holder.


Add a new openvasd user

---------------------------------



Login : ¥æ¡¼¥¶Ì¾¤òÆþ¤ì¤ë. FreeBSD ¤Î¥æ¡¼¥¶Ì¾¤Ê¤É¤È´Ø·¸¤Ê¤¯¤Æ¤è¤¤

Authentication (pass/cert) [pass] : º£²ó¤Î¤è¤¦¤Ê»È¤¤Êý¤Ç¤Ï pass ¤Î¤Þ¤Þ¤Ç¤è¤¤

Login password : ¥Ñ¥¹¥ï¡¼¥É¤òÆþ¤ì¤ë. ²èÌ̤ˤϽФʤ¤

Login password (again) : ¥Ñ¥¹¥ï¡¼¥É¤òºÆÅÙÆþ¤ì¤ë. ¤³¤ì¤â²èÌ̤ˤϽФʤ¤


User rules

---------------

openvasd has a rules system which allows you to restrict the hosts that paoon has the right to test.

For instance, you may want him to be able to scan his own host only.


Please see the openvas-adduser(8) man page for the rules syntax.


Enter the rules for this user, and hit ctrl-D once you are done:

(the user can have an empty rules set) ¤³¤³¤«¤é¡¤¤³¤Î¥æ¡¼¥¶¤Î¥¿¡¼¥²¥Ã¥ÈÀ©¸Â¤òÀßÄꤹ¤ë

accept 192.168.125.0/24 ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯

accept 127.0.0.0/24 ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯

default deny ¢« º£²ó¤Ï¤³¤¦¤·¤Æ¤ª¤¯

^D ¢« ctrl ¥­¡¼¤ò²¡¤·¤Ê¤¬¤é d ¥­¡¼¤ò²¡¤¹


°Ê²¼¡¤³Îǧ¤Î¤¿¤á¤ËÆþÎϾðÊ󤬽ÐÎϤµ¤ì¤ë

Login : ¥æ¡¼¥¶Ì¾

Password : ***********


Rules :

accept 192.168.125.0/24

accept 127.0.0.0/24

default deny



Is that ok? (y/n) [y] ÌäÂ꤬¤Ê¤±¤ì¤Ð y ¤ÈÅú¤¨¤è¤¦

user added.

¤³¤ì¤Ç openvas ¥µ¡¼¥Ð¤ò»È¤¦¥æ¡¼¥¶ÀßÄ꤬ºÑ¤ó¤À.

¤Á¤Ê¤ß¤Ë¡¤¤³¤Î¥æ¡¼¥¶ÀßÄê¤Ï
/usr/local/openvas/lib/openvas/users/
¤Î²¼¤Ë¥Õ¥¡¥¤¥ë¤¬ÃÖ¤«¤ì¤ë.
ÀßÄê¤òÊѹ¹¤·¤¿¤¤¤È¤­¤Ï¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤ò½ñ¤­´¹¤¨¤ì¤ÐÎɤ¤.

¼¡¤Ë¡¤¥¹¥­¥ã¥Ê¥×¥é¥°¥¤¥ó(ÍÍ¡¹¤Êµ¡Ç½¤¬¥×¥é¥°¥¤¥ó¤Ë¤Ê¤Ã¤Æ¤¤¤Æ¡¤Æü¡¹¹¹¿·¤µ¤ì¤Æ¤¤¤ë)¤ò¹¹¿·¤·¤Æ¤ª¤³¤¦.

 openvas-nvt-sync

¤È¤¹¤ì¤Ð¤è¤¤. ¾¯¤·»þ´Ö¤Ï¤«¤«¤ë¤¬.

OpenVAS ¥µ¡¼¥Ð¤Îµ¯Æ°

¤³¤³¤Þ¤ÇÌäÂ꤬¤Ê¤±¤ì¤Ð¡¤

 openvasd -D

¤È¤·¤Æ¥µ¡¼¥Ð¤ò¥Ç¡¼¥â¥ó¤È¤·¤Æµ¯Æ°¤·¤è¤¦. ¥¹¥­¥ã¥Ê¥×¥é¥°¥¤¥ó¤òÆɤ߹þ¤à¤Î¤Ë½é²ó¤À¤±·ë¹½»þ´Ö¤¬¤«¤«¤ë¤Î¤Ç¤·¤Ð¤é¤¯ÂԤȤ¦.
³Î¤«¤Ëµ¯Æ°¤·¤¿¤«¤É¤¦¤«¤ò¡¤

 lsof -i4

¤È¤·¤Æ³Î¤«¤á¤è¤¦. port 9390 ¤Ç openvasd ¤¬ÂÔ¤Á¹½¤¨¤Æ¤¤¤ë¤Ê¤é¤Ð OK ¤À.

OpenVAS ¥¯¥é¥¤¥¢¥ó¥È¤Îµ¯Æ°

¤µ¤Æ¡¤OpenVAS ¥¯¥é¥¤¥¢¥ó¥È¤òµ¯Æ°¤·¤è¤¦.
¤³¤ì¤Ï X window ¤ò¤Ä¤«¤¦¤Î¤Ç X ¤òΩ¤Á¾å¤²¤Æ¤«¤é¤À.
¤Á¤Ê¤ß¤Ë gnome ¥é¥¤¥Ö¥é¥ê¤¬¤¢¤ì¤Ð, gnome ¤½¤Î¤â¤Î¤òÆ°¤«¤µ¤Ê¤¯¤Æ¤â¤è¤¤.

°Ê²¼¤Î¥³¥Þ¥ó¥É¤òÂǤÁ¹þ¤â¤¦(Âçʸ»ú¾®Ê¸»ú¤Ï¶èÊ̤¹¤ë).

 OpenVAS-Client &

¤¹¤ë¤È¡¤
OpenVAS-Client.png
¤Î¤è¤¦¤Ê²èÌ̤ǥ¯¥é¥¤¥¢¥ó¥È¤¬µ¯Æ°¤¹¤ë¤Ï¤º¤À.

ÀȼåÀ­¸¡ºº¤Î½àÈ÷

¤É¤Î¥Þ¥·¥ó¤Ë¤¿¤¤¤·¤Æ¡¤¤É¤Î¤è¤¦¤Ê¸¡ºº¤ò¹Ô¤¦¤Î¤«¤È¤¤¤¦ÆâÍƤÎÀßÄ꤬½àÈ÷¤È¤·¤ÆɬÍפǤ¢¤ë.
¤½¤Î¤¢¤È¡¤¥µ¡¼¥Ð¤ËÀܳ¤·¤Æ¡¤¥µ¡¼¥Ð¤Ë¸¡ºº¤ò¹Ô¤ï¤»¤ë¤³¤È¤Ë¤Ê¤ë.

¶ñÂÎŪ¤Ë¤Ï¡¤ÀßÄê¤Ï¥¯¥é¥¤¥¢¥ó¥È¤Ç°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ë.

task, scope ¤òÀßÄꤹ¤ë

task, scope ¤È¤Ï¸¡ººÆâÍƤÎÀßÄêñ°Ì¤È»×¤¨¤Ð¤è¤¤.
¤Þ¤º¤Ï¤³¤ì¤òºî¤ë.

¶ñÂÎŪ¤Ë¤Ï¡¤°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤¡¥
¤Þ¤º¡¤¥á¥Ë¥å¡¼¤Î Task -> New ¤òÁª¤ó¤Ç¡¤¿·¤·¤¤¥¿¥¹¥¯¤òºî¤ë.
task-new.png
¤³¤Î¤È¤­¡¤¿·¤·¤¯ºî¤Ã¤¿¥¿¥¹¥¯¤Ë̾Á°¤¬¤Ä¤¤¤Æ¤¤¤Ê¤¤¤Î¤Ç¡¤Å¬Åö¤Ë̾Á°¤ò¤Ä¤±¤Æ¤ª¤³¤¦.
task-name.png

¼¡¤Ë¡¤¥á¥Ë¥å¡¼¤Î Scope -> New ¤òÁª¤ó¤Ç¡¤º£ºî¤Ã¤¿¥¿¥¹¥¯¤ÎÃæ¤Ë¿·¤·¤¤¥¹¥³¡¼¥×¤òºî¤ë.
scope-new.png
¤³¤Î¤È¤­¡¤¿·¤·¤¯ºî¤Ã¤¿¥¹¥³¡¼¥×¤Ë¤â̾Á°¤¬¤Ä¤¤¤Æ¤¤¤Ê¤¤¤Î¤Ç¡¤Å¬Åö¤Ë̾Á°¤ò¤Ä¤±¤Æ¤ª¤³¤¦.
scope-name.png

ºÇ¾®¸Â¤ÎÀßÄê

¤¢¤È¤Ï¤³¤Î¥¹¥³¡¼¥×¤ËÂФ·¤ÆÀßÄê¤ò¹Ô¤¦.
¤È¤¤¤Ã¤Æ¤â¤Þ¤º¤Ï¤Û¤Üɸ½à¤Ç¤è¤¤¤Î¤Ç¡¤°Ê²¼¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤.

¤Þ¤º¡¤ÈóÇ˲õ¸¡ºº(¥¿¡¼¥²¥Ã¥È¥µ¡¼¥Ð¤Ø¤Î±Æ¶Á̵¤·)¤ò¹Ô¤¦¤Î¤«¡¤Ç˲õ¸¡ºº(¥¿¡¼¥²¥Ã¥È¥µ¡¼¥Ð¤Î¥µ¡¼¥Ó¥¹¤¬Íî¤Á¤ë²ÄǽÀ­¤¢¤ê.ºÆµ¯Æ°¤¹¤ì¤Ð±Æ¶Á¤Ï¾Ã¤¨¤ë)¤ò¹Ô¤¦¤Î¤«¤ò·è¤á¤ë.
ÈóÇ˲õ¸¡ºº¤ÏÉûºîÍѤ¬¤Ê¤¤¤¬¡¤¸·¤·¤¤¸¡ºº¤Ï¤Ç¤­¤Ê¤¤.
Ç˲õ¸¡ºº¤Ï¡¤¥µ¡¼¥Ð¤Î¥Ç¡¼¥â¥ó¤¬Íî¤Á¤ë²ÄǽÀ­¤¬¤¢¤ë¤¬(Íî¤Á¤ë¤«¤É¤¦¤«¤ò¸¡ºº¤¹¤ë)¡¤¸·¤·¤¯¸¡ºº¤Ç¤­¤ë.

º£²ó¤Ï¤Þ¤¢ÈóÇ˲õ¤Ë¤·¤Æ¤ª¤³¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤±¦Â¦¤Î Options ¥¿¥ÖÃæ¤Î General ¤òÁªÂò¤¹¤ë¤È¡¤¤ä¤ä²¼Â¦¤Ë "Safe checks" ¤È¤¤¤¦¹àÌܤ¬¤¢¤ê¡¤¤³¤ì¤¬¥Á¥§¥Ã¥¯¤µ¤ì¤Æ¤¤¤ì¤ÐÈóÇ˲õ¡¤¥Á¥§¥Ã¥¯¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤ÐÇ˲õ¤È¤¤¤¦¤³¤È¤Ë¤Ê¤ë.
safe-check.png

¼¡¤Ë¡¤¥¿¡¼¥²¥Ã¥È¤ò·è¤á¤ë.
ºÇ½é¤Ï¼«Ê¬¼«¿È¤¬¤è¤¤¤À¤í¤¦.
¤½¤³¤Ç¡¤±¦Â¦¤Î Options ¥¿¥ÖÃæ¤Î Target selection ¤òÁªÂò¤¹¤ë¤È¡¤"Target(s):" ¤È¤¤¤¦¹àÌܤ¬¤¢¤ë¤Î¤Ç¡¤¤³¤³¤ÇÀßÄꤹ¤ì¤Ð¤è¤¤.
¤ª¤½¤é¤¯¥Ç¥Õ¥©¥ë¥È¤Ç "localhost" (¼«Ê¬¼«¿È¤Î¤³¤È)¤È½ñ¤«¤ì¤Æ¤¤¤ë¤À¤í¤¦¤«¤é¡¤¤½¤Î¾ì¹ç¤Ï¤½¤Î¤Þ¤Þ¤Ç¤è¤¤.
target-localhost.png

¤³¤ì¤ÇºÇ¾®¸Â¤ÎÀßÄ꤬´°Î»¤À.

¥¯¥é¥¤¥¢¥ó¥È¤ò¥µ¡¼¥Ð¤ËÀܳ¤¹¤ë

¼¡¤Ë¡¤¥¯¥é¥¤¥¢¥ó¥È¤ò¥µ¡¼¥Ð¤ËÀܳ¤¹¤ë. ¤½¤¦¤·¤Ê¤¤¤È¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥µ¡¼¥Ð¤Ë»ØÎ᤬½Ð¤»¤Ê¤¤¤·¡¤·ë²Ì¤â¼õ¤±¼è¤ì¤Ê¤¤.
¶ñÂÎŪ¤Ë¤Ï¡¤(ÀßÄꤷ¤¿¥¹¥³¡¼¥×¤¬ÁªÂò¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Îǧ¤·¤¿¾å¤Ç), ¥á¥Ë¥å¡¼¤Î File -> Connect ¤òÁªÂò¤¹¤ë.
file-connect.png

¤¹¤ë¤È¡¤ÀܳÀè¤Èǧ¾ÚÊýË¡¤ÎÀßÄê²èÌ̤¬½Ð¤ë. ÀܳÀè¤Ï¥Ç¥Õ¥©¥ë¥È¤Î localhost, port 9390 ¤ÇÌäÂê¤Ê¤¤. ǧ¾Ú¤Ï¡¤Àè¤Û¤É¥Ñ¥¹¥ï¡¼¥ÉÊý¼°¤òÁªÂò¤·¤¿¤Î¤Ç¡¤Àè¤Û¤ÉÀßÄꤷ¤¿¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤òÆþÎϤ·¤Æ¡¤±¦²¼¤Î OK ¤ò²¡¤½¤¦.
connect-server.png

½é¤á¤ÆÀܳ¤¹¤ë¤È¤­¤Ï SSL ¾ÚÌÀ½ñ¤Î°·¤¤¤Ë¤Ä¤¤¤Æ¿Ò¤Í¤é¤ì¤ë¤¬¡¤°ìÈÖ¾å¤òÁª¤ó¤Ç¡¤¤¢¤È¤Ï OK ¤ÇÎɤ¤.
ssl-one.png

¤³¤ì¤ÇÀܳ¤µ¤ì¤ë¤³¤È¤Ë¤Ê¤ë. ¤¿¤À¤·¡¤½é²ó¤Î¤ß¥×¥é¥°¥¤¥ó¤Î¥À¥¦¥ó¥í¡¼¥É¤Ç¾¯¤·ÂÔ¤¿¤µ¤ì¤ë¤Î¤Ç¤æ¤Ã¤¯¤êÂԤȤ¦.
¤·¤Ð¤é¤¯¤¹¤ë¤È
openvas-connect-and-downloaded-plugin.png
¤È¤Ê¤ê¡¤¥À¥¦¥ó¥í¡¼¥É½ªÎ»¤ÎÄÌÃΤ¬½Ð¤ë¤Ï¤º¤Ê¤Î¤Ç¡¤¤³¤³¤Ç OK ¤ò²¡¤»¤Ð¤è¤¤.

ÀȼåÀ­¸¡ºº¤ò¹Ô¤¦

¤³¤ì¤Ç¤¢¤È¤Ï¸¡ºº¤ò¼Â»Ü¤¹¤ë¤À¤±¤Ç¤¢¤ë.
¤³¤ì¤Ï¤â¤¦´Êñ¤Ç¡¤¥á¥Ë¥å¡¼¤Î Scope -> Execute ¤òÁªÂò¤¹¤ì¤Ð¤è¤¤.
scope-execute.png

¤¹¤ë¤È¡¤¤·¤Ð¤é¤¯¤·¤Æ¸¡ºº¤¬¤Ï¤¸¤Þ¤ê¿ÊĽÅÙ¤¬É½¼¨¤µ¤ì¤ë¤Î¤Ç¡¤¤¢¤È¤Ï¤¸¤Ã¤ÈÂԤƤФ褤.
openvas-scanning.png

¸¡ºº·ë²Ì¤ò¥Á¥§¥Ã¥¯

¸¡ºº·ë²Ì¤Ï¥¯¥é¥¤¥¢¥ó¥È¤Ç "report" ¹àÌܤò¥À¥Ö¥ë¥¯¥ê¥Ã¥¯¤¹¤ë¤Ê¤É¤¹¤ì¤Ð¤½¤Î¤Þ¤Þ¸«¤é¤ì¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë.
´í¸±ÅÙ¤¬¹â¤¤¤È»×¤ï¤ì¤ëÊó¹ð¤Û¤É·Ù¹ð¿§¤¬»È¤ï¤ì¤¿¥¢¥¤¥³¥ó¤¬¤Ä¤¤¤Æ¤¤¤¿¤ê¤¹¤ë¤Î¤Ç¡¤¾õ¶·¤Ï°ìÌÜÎÆÁ³¤À¤í¤¦.
report.png

notes.png ¼«Ê¬¤Î¥Þ¥·¥ó¤Î¸¡ºº·ë²Ì¤ò¸«¤Æ¡¤´í¸±¤È»×¤ï¤ì¤ëÊó¹ð¤ËÌܤòÄ̤½¤¦(ÆÃ¤Ë Apache ¤Î mod_proxy_ftp ¤Ë´Ø¤·¤Æ¤ÎÉôʬ).
notes.png ¤½¤Î¾å¤Ç¡¤¤É¤¦¤¹¤Ù¤­¤«È½ÃǤ»¤è.
notes.png Âкö¤¬É¬ÍפÈȽÃǤ·¤¿¾ì¹ç¤Ï¡¤Âкö¤ò»Ü¤½¤¦.

¤Ê¤ª¡¤¸¡ºº·ë²Ì¤Ï¥á¥Ë¥å¡¼¤Ç Report -> Export ¤òÁªÂò¤¹¤ë¤³¤È¤Ç¥Õ¥¡¥¤¥ë¤Ë½ÐÎϤ¹¤ë¤³¤È¤â¤Ç¤­¡¤·Á¼°¤Ï¤¤¤í¤¤¤íÁª¤Ù¤ë.
report-export.png
report-export-form.png

¾¤Î¥µ¡¼¥Ð¤ò¥¿¡¼¥²¥Ã¥È¤È¤·¤Æ¸¡ºº¤ò¤·¤Æ¤ß¤ë

notes.png °ìÄ̤êÂкö¤Ê¤É¤¬¤Ç¤­¤¿¡¤¤È´¶¤¸¤¿¤é¡¤Æ±¤¸Éô²°¤Î¿Í¤Ë¶¨ÎϤ·¤ÆÌã¤Ã¤Æ¡¤¸æ¸ß¤¤¤ËÁê¼ê¤Î¿Í¤Î¥µ¡¼¥Ð¤ò¥¿¡¼¥²¥Ã¥È¤È¤·¤Æ¸¡ºº¤òºÆ¤Ó¹Ô¤Ã¤Æ¤ß¤è¤¦.
notes.png Ç˲õ¸¡ºº¤â»î¤·¤Æ¤ß¤è¤¦("safe check" ¤Î¹àÌܤΥÁ¥§¥Ã¥¯¤ò³°¤¹).
warning.png ÀȼåÀ­¸¡ºº¤Ï¡Ö¥¢¥¿¥Ã¥¯¤Î°ìÉô¡×¤È¸«¤Ê¤µ¤ì¤ë¤Î¤Ç¡¤Áê¼ê¤Îµö²Ä̵¤·¤Ë¤ÏÀäÂФ˹Ԥï¤Ê¤¤¤³¤È!!

Ìϵ¼¥¢¥¿¥Ã¥¯

¤µ¤Æ¡¤¥»¥­¥å¥ê¥Æ¥£¤Ë¤Ä¤¤¤Æ¤ÎÁí¹çŪ¤Ê´¶³Ð¤òÍܤ¦¤¿¤á¤Ë¡¤¤³¤ì¤Þ¤Ç¤ÎÃμ±¤Ê¤É¤òÍøÍѤ·¤Æ¡¤¥µ¡¼¥Ð¤Ø¤Î¥¢¥¿¥Ã¥¯¤òÌϵ¼Åª¤Ë¹Ô¤Ã¤Æ¤ß¤è¤¦.
¤³¤ì¤Ë¤è¤êµÕ¤Ë¡ÖËɸ椹¤ë¤Ë¤Ï¤É¤¦¤·¤¿¤é¤è¤¤¤«¡×¤¬¤è¤ê¤è¤¯Íý²ò¤Ç¤­¤ë¤Ï¤º¤Ç¤¢¤ë.

¤Ê¤ª¡ÖÌϵ¼Åª¤Ë¡×¤È¤¤¤¦¤Î¤Ï¡¤PC ¤òÇ˲õ¤·¤Æ¥Ï¡¼¥É¥Ç¥£¥¹¥¯¤òÈ´¤­½Ð¤¹¡¤ÆâÉô¤Î¥Õ¥¡¥¤¥ë¤ò²õ¤¹¤Ê¤É¤·¤Æ¥¢¥¿¥Ã¥¯¤òÀ®¸ù¤µ¤»¤ë¡¤¤Ê¤É¤Î¡Ö¸å¤Ë»Ù¾ã¤¬»Ä¤ê¤½¤¦¤Ê¡×ÊýË¡¤ÏÈò¤±¤Æ¤ª¤¯¡¤¤È¤¤¤¦¤Æ¤¤¤É¤Î°ÕÌ£¤Ç¤¢¤ë.
¶ñÂÎŪ¤Ë¤Ï¡¤°Ê²¼¤Î¤è¤¦¤Ë¹Ô¤ª¤¦.

¥Ñ¥¹¥ï¡¼¥É¤ò¼ºÇ°¤·¤¿¤ÈÁÛÄꤷ¤Æ¼«Ê¬¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó

notes.png ¼«Ê¬¤Î¥Ñ¥¹¥ï¡¼¥É¤òÁ´¤Æ¼ºÇ°¤·¤¿¤¬¡¤¤É¤¦¤·¤Æ¤âÆɤߤ¿¤¤¥Õ¥¡¥¤¥ë¤¬Â¸ºß¤¹¤ë¤Î¤Ç¤Ê¤ó¤È¤«¤·¤¿¤¤¤È¤¤¤¦ÁÛÄê¤Î¤â¤È¤Ç¡¤¼«Ê¬¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó¤Ê¤¤¤·¤Ï¥Õ¥¡¥¤¥ë¥¢¥¯¥»¥¹¤¬²Äǽ¤Ê¾õÂ֤ˤޤǤâ¤Ã¤Æ¤¤¤Ã¤Æ¤ß¤è¤¦.
¤³¤³¤Ë¤Ï¤¢¤¨¤ÆÊýË¡¤Ï½ñ¤«¤Ê¤¤¤Î¤Ç¡¤¤è¤¯¹Í¤¨¤Æ¹Ô¤ª¤¦.
¼ê´Ö¤ò¤«¤±¤Æ¤âÎɤ±¤ì¤Ð¡¤(¸¶ÍýŪ¤Ë¤Ï)²¿Ä̤꤫»×¤¤¤Ä¤¯¤À¤í¤¦.

¥Ñ¥¹¥ï¡¼¥É¤ò¼ºÇ°¤·¤¿¤ÈÁÛÄꤷ¤Æ¾¿Í¤Î¥Þ¥·¥ó¤Ë¥í¥°¥¤¥ó

notes.png ¾å¤ÈƱÍͤλî¤ß¤ò¡¤Â¾¿Í¤Î¥Þ¥·¥ó¤ËÂФ·¤Æ¹Ô¤Ã¤Æ¤ß¤è¤¦. ¤â¤Á¤í¤ó¡¤»öÁ°¤Ë¤½¤Î¥Þ¥·¥ó¤Î´ÉÍý¼Ô¤Ëµö²Ä¤òÆÀ¼ê¤«¤é¹Ô¤¦¤³¤È.

warning.png ´ÉÍý¼Ô¤Îµö²Ä¥Ê¥·¤Ë¤³¤¦¤·¤¿¹Ô°Ù¤ò¹Ô¤¦¤³¤È¤ÏÀäÂФˤ·¤Ê¤¤¤è¤¦¤Ë.

¥ì¥Ý¡¼¥È

ÀȼåÀ­¸¡ºº¤Î·ë²Ì¤ª¤è¤Ó¤½¤ÎÂкöÅù¤È¡¤Ìϵ¼¥¢¥¿¥Ã¥¯¤Î·ë²Ì¤Ë¤Ä¤¤¤ÆÊó¹ð¤»¤è.
¤Þ¤¿¡¤¼ÂºÝ¤Ë¹Ô¤ï¤Ê¤«¤Ã¤¿¤â¤Î¤â´Þ¤á¡¤¥¢¥¿¥Ã¥¯¤ÎÊýË¡¤Ë¤Ä¤¤¤Æ»×¤¤¤Ä¤¯¤â¤Î¤ò²òÀ⤻¤è.
¤½¤·¤Æ¡¤¥¢¥¿¥Ã¥¯¤ÎÊýË¡¤ËÂФ·¡¤³Æ¡¹ËɸæÊýË¡¤ò¹Í»¡¤»¤è.

¤â¤Á¤í¤ó³Æ¼«¤Î

  1. ½ê°(³ØÉô¡¤³Ø²Ê)
  2. ³ØÀÒÈÖ¹æ
  3. ³Øǯ
  4. »á̾
  5. Æü»þ
  6. ´Î¿´¤Î¥ì¥Ý¡¼¥ÈÆâÍÆ(ÆÀ¤¿Ãθ«¡¤ºî¶È¤Ë¤Ä¤¤¤Æµ¤¤Å¤¤¤¿¤³¤ÈÅù)

¤ò½ñ¤¯¤Î¤ò˺¤ì¤Ê¤¤¤è¤¦¤Ë.

about Icons

Some icons in this page are downloadable at ICONFINDER.
The "note" icon notes.png designed by Marco Martin is distributed with the LGPL licence
and the "warning" icon warning.png designed by Alexandre Moore with the GPL licence.
Thank you Marco and Alexandre!