Mailing List Archive

Re: Scanning ESX, ESXi hosts... Typically I’ve been scanning boxes without credentials but I can do it with them and get a better snapshot of the host. It should tell you if it’s out of date either way by the banners it pulls but without credentials it’s not 100%


On 11/10/08 12:42 PM, "Ray Van Dolson" <rvandolson@esri.com> wrote:

How are people handling scanning of VMware ESX/ESXi hosts? Note that
I'm not referring to the VM's within these hosts, but the hosts
themselves.

Is there any point to creating a local account on the system that
Nessus can access via SSH? Would it then tell me if my version of ESXi
is out of date, etc?

Ray
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus"]http://mail.nessus.org/mailman/listinfo/nessus

Ray Van Dolson wrote:
> How are people handling scanning of VMware ESX/ESXi hosts? Note that
> I'm not referring to the VM's within these hosts, but the hosts
> themselves.
>
> Is there any point to creating a local account on the system that
> Nessus can access via SSH? Would it then tell me if my version of ESXi
> is out of date, etc?
>

If you consider VMWare ESX/ESXi its own OS, Tenable has not developed
patch auditing for ESX/ESXi servers. A majority of the security checks for
VMware are Windows local checks with a few for some other Linux OSes.

I've not personally tested logging into an ESX server with Nessus over
SSH. I find a lot of the default local Linux checks work well even on
Linux OSes that are not mainstream.

Ron Gula
Tenable Network Security







_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus