PDA

View Full Version : NESSUS scanning



dschaldenovell
04-May-2012, 14:34
Good morning,

My customer has recently been experiencing issues with NESSUS, security port scanning, the basic question they have is this, "Has anyone else in a SLES10/SLES11 environment been affected by NESSUS (security port scanning tool, what types of things should we be making our security aware of in respect to the times, ports, that they are scanning?

Thank you,

cjcox
04-May-2012, 16:05
On 05/04/2012 08:44 AM, dschaldenovell wrote:
>
> Good morning,
>
> My customer has recently been experiencing issues with NESSUS, security
> port scanning, the basic question they have is this, "Has anyone else in
> a SLES10/SLES11 environment been affected by NESSUS (security port
> scanning tool, what types of things should we be making our security
> aware of in respect to the times, ports, that they are scanning?
>
> Thank you,
>
>

Nessus is just a tool. What gets scanned is configurable. It IS a port scanner
though... so applications that are not prepared to deal with such things might
show errors, might even crash.

I've seen the most problems with scanners going against appliances... e.g. HP
iLO (for example). I know on our c7000 blade enclosures, the iLOs would become
unresponsive (somewhat random) after one or more nessus port scans were done...
and without a functioning iLO, the blade is going to go into an error state and
it forces a soft (or hard) blade slot reset (an outage).

So... YMMV.... but port scanners CAN cause problems...

In general, I haven't seen an issue with port scans against SLES 10/11 hosts
that are running fairly typical services (except for increased log entries).