Red Hat NETWORK 3.6 - Betriebsanweisung PDF herunterladen (Seite 16)

The PVS requires the “-c” and “-r” options each time it runs. These options tell the PVS

where to obtain its configuration information and where to write out its vulnerability report.

The other options are available for diagnostics and to analyze TCPDUMP trace files.

By default, the current content of the reports will be written to disk in the file pvs-

report.nsr every sixty minutes. Changing the “report-frequency” setting in the

pvs.conf file will allow the report time to be modified. If a full path is not specified, pvs-

report.nsr will be created in the location as specified by the nsr-report-file directive in

the pvs.conf file. If you want the pvs-report.nsr file to be created in a specific directory,

specify the full path, such as “-r /home/jsmith/myreport.nsr” when PVS is launched, or

configure the location in pvs.conf.

Changing the name or location of the nsr-report-file directive will cause

SecurityCenter to not be able to get the report file. Only change the directive if

the file does not need to be accessed by SecurityCenter.

In addition, PVS automatically generates HTML reports for web browsers. These

reports are located in the /opt/pvs/var/pvs/reports/html/ directory.

This particular command line operates the PVS in the foreground. To stop it, enter “Ctrl+C”

to kill the process, or send a kill -9 command to the PVS process ID from another shell

session.

The PVS does not save any learned network data. Therefore, the vulnerability

data that is collected is not persistent. If the PVS is restarted, it will re-learn the

underlying network very quickly.

Starting the Passive Vulnerability Scanner Manually as a Background Process

Running the PVS command without specifying the full path will result in the host

launching a tool that displays information about local physical volumes, and not

Tenable’s Passive Vulnerability Scanner. Ensure that you include the full path to

Tenable’s PVS as shown below.

It may be preferable to start the PVS as a background process. To do this, type the

following command:

# /opt/pvs/bin/pvs -c /opt/pvs/etc/pvs.conf -r report.nsr &

This will still print out some messages to the screen, but once the PVS has started, it is

silent except for updating the report file. If you do not want to see these messages, invoke

it with the following command:

# /opt/pvs/bin/pvs -c /opt/pvs/etc/pvs.conf -r report.nsr &> /dev/null 2>&1 &

The current content of the reports will be written to disk in the file report.nsr every sixty

minutes. If a full path is not specified, report.nsr will be created in the directory from which

1 2 ... 11 12 13 14 15 16 17 18 19 20 21 ... 60 61

Keine Kommentare

Red Hat NETWORK 3.6 - Betriebsanweisung Seite 16