Lab 8 - Network Security - security scanner

Pre-assignment: "A security scanner is a software which will audit remotely a given network and determine whether bad guys (aka 'crackers') may break into it, or misuse it in some way.

Unlike many other security scanners, Nessus does not take anything for granted. That is, it will not consider that a given service is running on a fixed port - that is, if you run your web server on port 1234, Nessus will detect it and test its security. It will not make its security tests regarding the version number of the remote services, but will really attempt to exploit the vulnerability."

Assignment:

Post-assignment: e-mail the following:

1)      Submit the report that you saved above.

 

2)      Submit answers to the following questions based on the reports you generated.

a)      Which host had the highest number of vulnerabilities?

 

b)      Least number of vulnerabilities?

 

c)      What operating systems are running on the computers?

 

d)      What web server (if any) is running on each computer?

 

e)      List several services running on each computer?

 

f)        Identify one high severity vulnerability for each computer (if there is one). Describe the vulnerability and discuss control(s) to minimize the risk from the vulnerability.

 

3)      Answer the following questions:

o        Describe several uses of Nessus.

 

 

 

o        Which feature of Nessus did you find the most useful and why?

 

o        Which feature of Nessus did you find the most difficult to use and why?