本文描述的是关于Nessus的高级设置,是基于Nessus官方文档进行的翻译,仅包含Settings-Advanced中的选项。
本文基于Nessus8.4的Home版本,官方文档原文链接:https://docs.tenable.com/nessus/Content/GettingStarted.htm
User Interface用户界面 | ||||
Setting | Identifier | Description | Default | Valid Values |
Allow Post-Scan Editing 允许扫描后编辑 |
allow_post_scan_editing | Allows a user to make edits to scan results after the scan is complete. 允许用户对扫描后的扫描结果进行编辑。 |
yes | yes or no |
Disable Nessus Web Server 进行Nessus WEB服务 |
disable_xmlrpc | Disables the new XMLRPC (Web Server) interface. 禁用新的XMLRPC(Web服务)接口 |
no | yes or no |
Disable UI 禁用UI |
disable_ui | Disables the user interface on managed scanners. 对被管理的扫描器禁用UI |
no | yes or no |
Login Banner 登录横幅 |
login_banner | A text banner displays that appears after you attempt to log in to Nessus. 当您尝试登录Nessus后会显示一个文本横幅。 Note: The banner only appears the first time you log in on a new browser or computer. 注意:横幅仅在您首次登录新浏览器或计算机时出现。 |
None | String |
Maximum Concurrent Web Users 最大并发Web用户数 |
global.max_web_users | Maximum web users who can connect simultaneously. 可以同时连接的最大Web用户。 |
1024 | Integers.整数 If set to 0, no limit is enforced. 如果填写0就是意味着没有限制。 |
Nessus Web Server IP Nessus Web服务器IP |
listen_address | IPv4 address to listen for incoming connections. If set to 127.0.0.1, this restricts access to local connections only. 用于侦听传入连接的IPv4地址。如果设置为127.0.0.1,则仅限制对本地连接的访问。 |
0.0.0 | String in the format of an IP address 输入的字符串为IP地址格式 |
Nessus Web Server Port Nessus Web服务器端口 |
xmlrpc_listen_port | The port that the Nessus web server listens on. Nessus Web服务器侦听的端口。 |
8834 | Integers 整数 |
Use Mixed Vulnerability Groups 使用混合漏洞组 |
scan_vulnerability_groups_mixed | When enabled, Nessus displays the severity level as Mixed for vulnerability groups, unless all the vulnerabilities in a group have the same severity. When disabled, Nessus displays the highest severity indicator of a vulnerability in a group 启用后,Nessus会将严重性级别显示为“Mixed”的漏洞组,除非组中的所有漏洞具有相同的严重性。禁用时,Nessus会显示组中漏洞的最高严重性指示 |
yes | yes or no |
Use Vulnerability Groups 使用漏洞组 |
scan_vulnerability_groups | When enabled, Nessus groups vulnerabilities in scan results by common attributes, giving you a shorter list of results. 启用后,Nessus会根据常用属性对扫描结果中的漏洞进行分组,从而为您提供较短的结果列表。 |
yes | yes or no |
Scanning扫描 | ||||
Setting | Identifier | Description | Default | Valid Values |
Audit Trail Verbosity 审计踪迹的详细程度 |
audit_trail | Controls verbosity of the plugin audit trail. Full audit trails include the reason why plugins were not included in the scan. 控制插件审计踪迹的详细程度。完整的审计踪迹包括插件未包含在扫描中的原因。 |
full | full, partial, none |
Auto Enable Plugin Dependencies 自动启用插件依赖项 |
auto_enable_dependencies | Automatically activates the plugins that are depended on. If disabled, not all plugins may run despite being selected in a scan policy. 自动激活依赖的插件。如果禁用,则尽管在扫描策略中选择了插件,但并非所有插件都可以运行。 |
yes | yes or no |
CGI Paths for Web Scans Web扫描的CGI路径 |
cgi_path | A colon-delimited list of CGI paths to use for web server scans. 用于Web服务器扫描的以冒号分隔的CGI路径列表。 |
/cgi-bin:/scripts | String |
Engine Thread Idle Time 扫描引擎空闲时间 |
engine.idle_wait | Number of seconds a scan engine remains idle before shutting itself down. 扫描引擎在关闭之前保持空闲的秒数 |
60 | Integers 0-600 |
Max Plugin Output Size 插件输出的最大值 |
plugin_output_max_size_kb | The maximum size, in kilobytes |