Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Nessus: users

Scanning ESX, ESXi hosts...

  

 
Nessus users RSS feed   Index | Next | Previous | View Threaded


rvandolson at esri

Nov 10, 2008, 10:42 AM

Post #1 of 3 (1249 views)
Permalink
Scanning ESX, ESXi hosts...
How are people handling scanning of VMware ESX/ESXi hosts? Note that
I'm not referring to the VM's within these hosts, but the hosts
themselves.

Is there any point to creating a local account on the system that
Nessus can access via SSH? Would it then tell me if my version of ESXi
is out of date, etc?

Ray
_______________________________________________
Nessus mailing list
Nessus [at] list
http://mail.nessus.org/mailman/listinfo/nessus


Ray.DuBose at hilton

Nov 10, 2008, 12:22 PM

Post #2 of 3 (1188 views)
Permalink
Re: Scanning ESX, ESXi hosts... [In reply to]
Re: Scanning ESX, ESXi hosts... Typically I’ve been scanning boxes without credentials but I can do it with them and get a better snapshot of the host. It should tell you if it’s out of date either way by the banners it pulls but without credentials it’s not 100%


On 11/10/08 12:42 PM, "Ray Van Dolson" <rvandolson [at] esri> wrote:

How are people handling scanning of VMware ESX/ESXi hosts? Note that
I'm not referring to the VM's within these hosts, but the hosts
themselves.

Is there any point to creating a local account on the system that
Nessus can access via SSH? Would it then tell me if my version of ESXi
is out of date, etc?

Ray
_______________________________________________
Nessus mailing list
Nessus [at] list
http://mail.nessus.org/mailman/listinfo/nessus"]http://mail.nessus.org/mailman/listinfo/nessus



rgula at tenablesecurity

Nov 10, 2008, 2:30 PM

Post #3 of 3 (1178 views)
Permalink
Re: Scanning ESX, ESXi hosts... [In reply to]
Ray Van Dolson wrote:
> How are people handling scanning of VMware ESX/ESXi hosts? Note that
> I'm not referring to the VM's within these hosts, but the hosts
> themselves.
>
> Is there any point to creating a local account on the system that
> Nessus can access via SSH? Would it then tell me if my version of ESXi
> is out of date, etc?
>

If you consider VMWare ESX/ESXi its own OS, Tenable has not developed
patch auditing for ESX/ESXi servers. A majority of the security checks for
VMware are Windows local checks with a few for some other Linux OSes.

I've not personally tested logging into an ESX server with Nessus over
SSH. I find a lot of the default local Linux checks work well even on
Linux OSes that are not mainstream.

Ron Gula
Tenable Network Security







_______________________________________________
Nessus mailing list
Nessus [at] list
http://mail.nessus.org/mailman/listinfo/nessus

Nessus users RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.