Red Hat NETWORK 3.6 - Guía de usuario descargar pdf (Pagina 18)

On high-speed networks with more than 20,000 systems, if the system running

the PVS is CPU bound, it may take up to 30 seconds to generate the report.

Downloading New Vulnerability Plugins

To manually update the PVS plugins, run /opt/pvs/bin/pvs-update-plugins.sh. This will

update the plugins located in /opt/pvs/var/pvs/plugins.

If the SecurityCenter is being used to manage a PVS, new plugins for the PVS will expect to

be sent to /opt/pvs/var/pvs/plugins and the PVS Proxy will restart the PVS.

SecurityCenter will fail to send plugins if this directory is not configured for use by by PVS.

CONFIGURATION

pvs.conf File Format

The pvs.conf file, located in /opt/pvs/etc, is split into two sections: “options” and

“networks”. The “options” section specifies the operating parameters of the PVS and the

“networks” section specifies which networks the PVS is to focus on. An example Unix

pvs.conf file is shown in “Appendix 1”. Any file that is specified in the pvs.conf file must be

enclosed in quotes. The following table lists the available options that can be configured:

Name

Description

report-threshold

PVS reports new ports, applications, or vulnerabilities after

they are detected. The report-threshold variable specifies

how many times a vulnerability will be reported before PVS

stops reporting those items as it detects them. When adding

new port, application, or vulnerability information to the

PVS’s model of the observed network, this threshold can be

used to limit false positives and stray ports that open and

close quickly. For example, during an FTP file transfer, a

client may temporarily open a port. However, with the report

threshold variable, a vulnerability will not be reported until it

has occurred a specified number of times. This variable has a

default of “3”.

nsr-report-file

Specifies the location for PVS to generate the report in NSR

format. If PVS is started with the -r option, it will override

this configuration option.

Only change this setting in the pvs.conf file from

/opt/pvs/var/pvs-proxy/scans/pvs-

report.nsr if SecurityCenter is not being used.

xml-report-file

Specifies the location for PVS to generate the report in XML

format.

nessus-report-file

Specifies the location for PVS to generate the report in

.nessus format.

1 2 ... 13 14 15 16 17 18 19 20 21 22 23 ... 60 61

Comentarios a estos manuales

Sin comentarios

Red Hat NETWORK 3.6 - Guía de usuario Pagina 18

Comentarios a estos manuales

Relacionado con productos y manuales para Servidores Red Hat NETWORK 3.6 -