02233

Netværkssikkerhed
Network Security

• Introduktion
• Nessus Scan
• Nessus Questions
  • Question 1
  • Question 2
  • Question 3
  • Question4
  • Question 5
  • Question 6
  • Question 7
  • Question 8
  • Question 9
  • Question 10
  • Question 11
  • Question 12
  • Question 13
  • Question 14
  • Question 15
  • Question 16
  • Question 17
  • Question 18
  • Question 19
  • Question 20
  • Question 21
  • Question 22
  • Question 23
  • Question 24
  • Question 25
• Snort Questions
• References

Question 21

Given the company network from the exercises, where would one or more Nessus servers be positioned in the network, and how should they be put to use?

Each network segment should have it's own nessus server. You'll get into serious trouble with routers (routing tables filling up) and firewalls (blocked ports) otherwise. Chapter 2 pp 35-37 in [B1] describes the best policy for placing servers. How to use nessus depends on what kind of machines is on a given network segment. Chapter 10 in [B1] goes into great detail as to how one should implement a policy. You'ld use one scanning policy for the servers and another for the workstations. The authors recommend a daily scan and iomplementing a policy for each kind of server.

Bjarne D Mathiesen

Michael Pantridge

Thabet Al-Assdi

Chang Jensen