Anyone using nessus?

Hi,

I am using nessus to evaluate the security of a web server. I have started up the nessus daemon on the server, heres the netstat output:

Active Internet connections (only servers)                                                                              
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name                        
tcp        0      0 *:ldap                  *:*                     LISTEN      3565/slapd                              
tcp        0      0 *:mysql                 *:*                     LISTEN      4026/mysqld                             
tcp        0      0 *:pop3                  *:*                     LISTEN      3584/xinetd                             
tcp        0      0 *:sunrpc                *:*                     LISTEN      3463/portmap                            
tcp        0      0 *:www-http              *:*                     LISTEN      13855/httpd2-prefor                     
tcp        0      0 *:ssh                   *:*                     LISTEN      3577/sshd                               
tcp        0      0 *:nessus                *:*                     LISTEN      6118/nessusd: waiti                     
tcp        0      0 *:smtp                  *:*                     LISTEN      3636/master                             
tcp        0      0 *:https                 *:*                     LISTEN      13855/httpd2-prefor
udp        0      0 *:sunrpc                *:*                                 3463/portmap

It’s listening on the default nessus port 9390. I am trying to connect to the nessus server instance using Open-VAS Client. I have generated the client and server certificates, I have pointed the client at the User Certificate File, the User Key File and I have a CA cert. I have created a user account on the nessus server. The problem is that when I try and log in from the Open-VAS client it keeps saying it can’t connect. Is there anywhere I can check to see if it’s being caught in a firewall, or where I can see if the connection is even making it to the server…

/jlar

try turning off the firewall for a few seconds…


DenverD (Linux Counter 282315)
CAVEAT: http://is.gd/bpoMD
posted via NNTP w/TBird 2.0.0.23 | KDE 3.5.7 | openSUSE 10.3
2.6.22.19-0.4-default SMP i686
AMD Athlon 1 GB RAM | GeForce FX 5500 | ASRock K8Upgrade-760GX |
CMedia 9761 AC’97 Audio

Easy to test the connection without going any further with:
telnet <name-or-IP> 9390

Thanks everyone for their replies…

I tried telnet and it came back with:

Could not open connection to the host, on port 9390: Connect failed

I don’t think I have an OpenSuse firewall… my service provider told me that I was already behind a firewall, so there was no need to enable one. I’ll try telnet from localhost and if that works it must be getting caught by the firewall

/jlar

Better check the firewall. In openSUSE it is on by default, thus if you did not disable it, it is still on. Look in YaST > Security and Users > Firewall.