Kamis, 03 September 2009

Install Nessus di Debian Lenny

cari paket-paket yang berhubungan dengan kata kunci "nessus"


# apt-cache search nessus
harden-remoteaudit - Audit your remote systems from this host
libnasl-dev - Nessus Attack Scripting Language, static library and headers
libnasl2 - Nessus Attack Scripting Language, shared library
libnessus-dev - Nessus static libraries and headers
libnessus2 - Nessus shared libraries
nessus - Remote network security auditor, the client
nessus-dev - Nessus development header files
nessus-plugins - Nessus plugins
nessusclient - Transitional package to openvas-client
nessusd - Remote network security auditor, the server


Install nessus client
# apt-get install nessus

Install nessus server

# apt-get install nessusd
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following packages were automatically installed and are no longer required:
libswfdec-0.6-90 libuser-identity-perl libepc-ui-1.0-1 libmtp7 libepc-1.0-1 libgksu1.2-0 aspell libraw1394-8
djvulibre-desktop libicu38 libmime-types-perl libgda3-common libgksuui1.0-1 libmagick++10 gnome-network-admin libnm-util0
libjaxp1.3-java-gcj python-numeric libcamel1.2-11 libpt-1.10.10-plugins-alsa libtotem-plparser10 libfile-remove-perl
libpt-1.10.10 libsoup2.2-8 libsuitesparse-3.1.0 libgpod3 libxerces2-java-gcj libeel2-data libdirectfb-1.0-0 p7zip dhcdbd
libcurl3 libio-stringy-perl libjaxp1.3-java gnome-spell libssh2-1 libpoppler3 libxerces2-java
libobject-realize-later-perl libeel2-2.20 openoffice.org-style-andromeda libopal-2.2 libxalan2-java libdvdread3
libgnomevfs2-bin libiw29 libedataserver1.2-9 libgucharmap6 libgda3-3 svgalibg1 libpt-1.10.10-plugins-v4l
libgnome-desktop-2 libavahi-core5 libmail-box-perl libcucul0 libxalan2-java-gcj libpoppler-glib3
Use 'apt-get autoremove' to remove them.
The following extra packages will be installed:
libnasl2 nessus-plugins snmp
The following NEW packages will be installed:
libnasl2 nessus-plugins nessusd snmp
0 upgraded, 4 newly installed, 0 to remove and 1 not upgraded.
Need to get 4347kB of archives.
After this operation, 21.9MB of additional disk space will be used.
Do you want to continue [Y/n]? Y
Get:1 http://202.6.233.34 testing/main libnasl2 2.2.10-1 [318kB]
Get:2 http://202.6.233.34 testing/main nessus-plugins 2.2.10-6 [2785kB]
Get:3 http://202.6.233.34 testing/main nessusd 2.2.10-3 [206kB]
Get:4 http://202.6.233.34 testing/main snmp 5.4.1~dfsg-12 [1038kB]
Fetched 4347kB in 0s (4486kB/s)
Preconfiguring packages ...
Selecting previously deselected package libnasl2.
(Reading database ... 169172 files and directories currently installed.)
Unpacking libnasl2 (from .../libnasl2_2.2.10-1_i386.deb) ...
Selecting previously deselected package nessus-plugins.
Unpacking nessus-plugins (from .../nessus-plugins_2.2.10-6_i386.deb) ...
Selecting previously deselected package nessusd.
Unpacking nessusd (from .../nessusd_2.2.10-3_i386.deb) ...
Selecting previously deselected package snmp.
Unpacking snmp (from .../snmp_5.4.1~dfsg-12_i386.deb) ...
Processing triggers for man-db ...
Setting up libnasl2 (2.2.10-1) ...
Setting up nessus-plugins (2.2.10-6) ...
Setting up nessusd (2.2.10-3) ...
/var/lib/nessus/private/CA created
/var/lib/nessus/CA created
Congratulations. Your server certificate was properly created.
The following files were created :

. Certification authority :
Certificate = /var/lib/nessus/CA/cacert.pem
Private key = /var/lib/nessus/private/CA/cakey.pem

. Nessus Server :
Certificate = /var/lib/nessus/CA/servercert.pem
Private key = /var/lib/nessus/private/CA/serverkey.pem
/etc/nessus/nessusd.conf updated to use the server's certificate / keys
Setting up snmp (5.4.1~dfsg-12) ...


* Coba baca dokumen-dokumen di /usr/share/doc/nessus
Nah jadi bisa kan? Dari Om Har, rules dibuat kosong saja. Tekan Ctrl-D.

* Register nessus
# http://www.nessus.org/plugins/index.php?view=register
referensi: http://bsdnetwork.blogsome.com/2007/02/23/nessus-debian/

* Setelah melakukan register nessus
Plugin yang diload semakin banyak. Sebelum diregister sepertinya hanya 3000-an. Sekarang setelah diregister mencapai 29914. Efek lain dari semakin banyaknya plugin nessus yang diload, aplikasi nessus dan nessud memakan CPU yang besar. Oleh karena itu nessus membutuhkan daya komputasi yang besar.

* Bagaimana arsitektur aplikasi nessus
Mengapa harus ada server dan client?
Diposkan oleh za di 10:51 0 komentar
Label: ,

Selasa, 25 Agustus 2009

Tomcat6 di Debian Lenny

Tomcat sudah mencapai versi yang keenam. Dulu terakhir saya bermain dengan Tomcat, masih versi 5.5 Selesai melakukan instalasi tomcat6 dari binary, saya coba panggil. Saat saya panggil, saya bingung. Tomcat harus saya panggil di port berapa?

Di /etc/tomcat6/server.xml tertulis port 8005

Server port="8005" shutdown="SHUTDOWN"


Namun saat saya melakukan nmap port yang terbuka adalah port 8080

# nmap localhost

Starting Nmap 4.68 ( http://nmap.org ) at 2009-08-25 21:00 WIT
Warning: Hostname localhost resolves to 2 IPs. Using 127.0.0.1.
Interesting ports on localhost (127.0.0.1):
Not shown: 1707 closed ports
PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
80/tcp open http
111/tcp open rpcbind
631/tcp open ipp
5432/tcp open postgresql
5900/tcp open vnc
8080/tcp open http-proxy
Diposkan oleh za di 08:55 0 komentar
Label:

Jumat, 21 Agustus 2009

Install OpenAudIT

Berikut catatan saya yang tertinggal dalam menginstall OpenAudIT. Sistem operasi yang saya gunakan kebetulan adalah Ubuntu Jaunty

Install ekstensi php5 yang dibutuhkan: imagick dan gd
# apt-get install php5-imagick php5-gd

Lalu buka http://localhost/direktori-open-audit/setup.php Saat menjalankan ini, ada 2 file yang permission-nya harus diubah. Ikuti petunjuk yang ada.

Pada langkah ketiga saya menghadapi error berikut:
Fatal error: Call to undefined function mysql_connect() in /home/za/public_html/OpenAuditReleaseCandidate/include.php on line 111

Kesalahan ini (sepertinya) ada di bagian database. Lalu saya buat dulu tabel beserta user di database.
Diposkan oleh za di 13:24 0 komentar
Label:

Rabu, 12 Agustus 2009

OpenVPN di Ubuntu Jaunty

Hari ini saya coba mengkonfigurasi koneksi VPN dengan OpenVPN di Ubuntu Jaunty. Sayangnya saya mendapat masalah.

Sebelumnya saya mengikuti langkah-langkah yang ada di situs VPN ITB. Berikut ini adalah pesan syslog yang ada:


Aug 12 09:54:29 zara NetworkManager: Starting VPN service 'org.freedesktop.NetworkManager.openvpn'...
Aug 12 09:54:29 zara NetworkManager: VPN service 'org.freedesktop.NetworkManager.openvpn' started (org.freedesktop.NetworkManager.openvpn), PID 10944
Aug 12 09:54:29 zara NetworkManager: VPN service 'org.freedesktop.NetworkManager.openvpn' just appeared, activating connections
Aug 12 09:54:29 zara NetworkManager: nm-vpn-connection.c.900: NeedSecrets failed: dbus-glib-error-quark Rejected send message, 1 matched rules; type="method_call", sender=":1.8" (uid=0 pid=2494 comm="/usr/sbin/NetworkManager --pid-file /var/run/Netwo") interface="org.freedesktop.NetworkManager.VPN.Plugin" member="NeedSecrets" error name="(unset)" requested_reply=0 destination="org.freedesktop.NetworkManager.openvpn" (uid=0 pid=10944 comm="/usr/lib/network-manager-openvpn/nm-openvpn-servic"))
Aug 12 09:54:29 zara NetworkManager: connection_state_changed(): Rejected send message, 1 matched rules; type="method_call", sender=":1.8" (uid=0 pid=2494 comm="/usr/sbin/NetworkManager --pid-file /var/run/Netwo") interface="org.freedesktop.NetworkManager.VPN.Plugin" member="Disconnect" error name="(unset)" requested_reply=0 destination="org.freedesktop.NetworkManager.openvpn" (uid=0 pid=10944 comm="/usr/lib/network-manager-openvpn/nm-openvpn-servic"))
Aug 12 09:54:29 zara NetworkManager: Policy set 'Auto eth0' (eth0) as default for routing and DNS.


Untuk sementara belum bisa :|
Diposkan oleh za di 09:57 0 komentar
Label: ,

Selasa, 11 Agustus 2009

Enable Apache2 Userdir Mod on Ubuntu Jaunty

By default apache2 userdir mod on ubuntu jaunty isn't active. So if you want to get your public_html directory active, you should do this:

# a2enmod userdir
Diposkan oleh za di 10:45 0 komentar
Label: , ,

Senin, 10 Agustus 2009

Xpad

Banyak pikiran dalam otak? Ingin menuliskannya ke post it? Bekerja dengan komputer? Apa iya post it mau ditempel di layar komputer? Solusinya adalah menggunakan xpad

# apt-cache search xpad
xpad - sticky note application for X

*blog ini berasa seperti iklan* Tulisan ini aku tulis sebagai pengingat diriku sendiri.
Diposkan oleh za di 09:10 0 komentar
Label:

Rabu, 22 Juli 2009

Instalasi Truecrypt di Ubuntu Jaunty

Tentu saja instalasi Ubuntu Jaunty tidak akan dijelaskan di sini.

* Buka truecrypt.org
Lalu pilih paket dan unduh truecrypt untuk Linux (disesuaikan dengan arsitektur komputer).

* Ekstrak
$ tar -xzvf truecrypt-6.2a-ubuntu-x86.tar.gz
truecrypt-6.2a-setup-ubuntu-x86

* Eksekusi truecrypt
$ ./truecrypt-6.2a-setup-ubuntu-x86
Nanti akan muncul pesan xmessage. Baca pesan tersebut dan ikuti langkah-langkahnya.

* Truecrypt terinstall
Selamat!

* Jalankan truecrypt
$ truecrypt

Beberapa gambar layar ada di flickr saya.
Diposkan oleh za di 13:55 0 komentar
Label: ,
Langgan: Entri (Atom)