Ray Van Dolson wrote: > How are people handling scanning of VMware ESX/ESXi hosts? Note that > I'm not referring to the VM's within these hosts, but the hosts > themselves. > > Is there any point to creating a local account on the system that > Nessus can access via SSH? Would it then tell me if my version of ESXi > is out of date, etc? >
If you consider VMWare ESX/ESXi its own OS, Tenable has not developed patch auditing for ESX/ESXi servers. A majority of the security checks for VMware are Windows local checks with a few for some other Linux OSes. I've not personally tested logging into an ESX server with Nessus over SSH. I find a lot of the default local Linux checks work well even on Linux OSes that are not mainstream. Ron Gula Tenable Network Security _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
