本文描述的是关于Nessus的高级设置,是基于Nessus官方文档进行的翻译,仅包含Settings-Advanced中的选项。
本文基于Nessus8.4的Home版本,官方文档原文链接:https://docs.tenable.com/nessus/Content/GettingStarted.htm
User Interface用户界面 | ||||
Setting | Identifier | Description | Default | Valid Values |
Allow Post-Scan Editing 允许扫描后编辑 |
allow_post_scan_editing | Allows a user to make edits to scan results after the scan is complete. 允许用户对扫描后的扫描结果进行编辑。 |
yes | yes or no |
Disable Nessus Web Server 进行Nessus WEB服务 |
disable_xmlrpc | Disables the new XMLRPC (Web Server) interface. 禁用新的XMLRPC(Web服务)接口 |
no | yes or no |
Disable UI 禁用UI |
disable_ui | Disables the user interface on managed scanners. 对被管理的扫描器禁用UI |
no | yes or no |
Login Banner 登录横幅 |
login_banner | A text banner displays that appears after you attempt to log in to Nessus. 当您尝试登录Nessus后会显示一个文本横幅。 Note: The banner only appears the first time you log in on a new browser or computer. 注意:横幅仅在您首次登录新浏览器或计算机时出现。 |
None | String |
Maximum Concurrent Web Users 最大并发Web用户数 |
global.max_web_users | Maximum web users who can connect simultaneously. 可以同时连接的最大Web用户。 |
1024 | Integers.整数 If set to 0, no limit is enforced. 如果填写0就是意味着没有限制。 |
Nessus Web Server IP Nessus Web服务器IP |
listen_address | IPv4 address to listen for incoming connections. If set to 127.0.0.1, this restricts access to local connections only. 用于侦听传入连接的IPv4地址。如果设置为127.0.0.1,则仅限制对本地连接的访问。 |
0.0.0 | String in the format of an IP address 输入的字符串为IP地址格式 |
Nessus Web Server Port Nessus Web服务器端口 |
xmlrpc_listen_port | The port that the Nessus web server listens on. Nessus Web服务器侦听的端口。 |
8834 | Integers 整数 |
Use Mixed Vulnerability Groups 使用混合漏洞组 |
scan_vulnerability_groups_mixed | When enabled, Nessus displays the severity level as Mixed for vulnerability groups, unless all the vulnerabilities in a group have the same severity. When disabled, Nessus displays the highest severity indicator of a vulnerability in a group 启用后,Nessus会将严重性级别显示为“Mixed”的漏洞组,除非组中的所有漏洞具有相同的严重性。禁用时,Nessus会显示组中漏洞的最高严重性指示 |
yes | yes or no |
Use Vulnerability Groups 使用漏洞组 |
scan_vulnerability_groups | When enabled, Nessus groups vulnerabilities in scan results by common attributes, giving you a shorter list of results. 启用后,Nessus会根据常用属性对扫描结果中的漏洞进行分组,从而为您提供较短的结果列表。 |
yes | yes or no |
Scanning扫描 | ||||
Setting | Identifier | Description | Default | Valid Values |
Audit Trail Verbosity 审计踪迹的详细程度 |
audit_trail | Controls verbosity of the plugin audit trail. Full audit trails include the reason why plugins were not included in the scan. 控制插件审计踪迹的详细程度。完整的审计踪迹包括插件未包含在扫描中的原因。 |
full | full, partial, none |
Auto Enable Plugin Dependencies 自动启用插件依赖项 |
auto_enable_dependencies | Automatically activates the plugins that are depended on. If disabled, not all plugins may run despite being selected in a scan policy. 自动激活依赖的插件。如果禁用,则尽管在扫描策略中选择了插件,但并非所有插件都可以运行。 |
yes | yes or no |
CGI Paths for Web Scans Web扫描的CGI路径 |
cgi_path | A colon-delimited list of CGI paths to use for web server scans. 用于Web服务器扫描的以冒号分隔的CGI路径列表。 |
/cgi-bin:/scripts | String |
Engine Thread Idle Time 扫描引擎空闲时间 |
engine.idle_wait | Number of seconds a scan engine remains idle before shutting itself down. 扫描引擎在关闭之前保持空闲的秒数 |
60 | Integers 0-600 |
Max Plugin Output Size 插件输出的最大值 |
plugin_output_max_size_kb | The maximum size, in kilobytes (KB), of plugin output to be included in exported scan results with the .nessus format. If the output exceeds the maximum size, it is truncated in the report. Note: For Nessus 8.3. |