I visited nessus sites and read the archived messages, but I still don't quite understand how nessus works. Any advices or suggestions for a new user to learn how nessus works are appreciated. Thanks.
Huihsing Fu Avaya Inc. > > > -----Original Message----- From: Adam Mazza [mailto:adam@;68e.com] Sent: Sunday, November 03, 2002 5:44 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: so many nessus options.. must I learn all of them? On Sun, 3 Nov 2002 [EMAIL PROTECTED] wrote: > I am looking at the nessus client GUI menus > for the first time and there is a ton of > options! Do the *real* users of Nessus > know *all* these options? > > I can choose > between ICMP pings or TCP pings. I didn't > even know there was such a thing as a TCP > ping.....I still don't know what this has > to do with security?? There are instances that icmp is blocked, but you can get through to port 80, 21, 443, etc. Basically you don't want to rely on a machine not being scanned simply because it didn't respond to an ICMP request. Of course if there isn't a firewall or a any ACLs blocking your access, this may be a moot point. > > Would it be wimpy/wrong to just always > run *all* nessus tests without understanding > all of them? I guess I must learn all stuff right? You should really know how Nessus works in general, if you get a report of certain tests turning up vulnerabilities, you should go and understand the methodology behind those tests. In the end, Nessus is just a tool, it's a very good tool, but in the end it's up to you to do the analysis on the results of the scans and decide what the next step(s) are. Regards, Adam Mazza - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body. - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
