Davoud Teimouri

Virtualization & Datacenter

Virtual Environments Vulnerability Assessment By GSM (OpenVAS) – Part 2

Virtual Environments Vulnerability Assessment By GSM (OpenVAS) - Part 2

We have reviewed reasons of have Vulnerability Assessment or Vulnerability Manager in virtual environments and how these software help us to find vulnerabilities on any component of virtual infrastructure. We have reviewed OpenVAS or Greenbone Security Manager and talked about features and abilities.

Now, it’s time to use the GSM server that we had prepared on the previous part. In this part of blog post, we’ll configure a target (ESXi Server) on OpenVAS server, create a task for scan and find the result of scan.

I’ve installed ESXi 6U1 (3029758) on a virtual machine and there is no customized configuration, all configurations are default.

385 total views, 51 views today

NFTables, The Next Generation of Packet Classification Framework

iptables vs nftables

Over the years, XTables (IPTables, IP6Tables, ARPTables and EBTables) were using as user-space utility programs for packet filtering in Linux distributions such as Red Hat Enterprise Linux or Ubuntu. Now, Linux vendors are replacing XTables with next generation packet classification framework which called NFTables.

nftables replaces the popular {ip,ip6,arp,eb}tables. This software provides a new in-kernel packet classification framework that is based on a network-specific Virtual Machine (VM) and a new nft user-space command line tool. nftables reuses the existing Netfilter subsystems such as the existing hook infrastructure, the connection tracking system, NAT, user-space queuing and logging subsystem.

366 total views, 41 views today

Red Hat Enterprise Linux 8.0 Beta

Red Hat has introduced beta version of Enterprise Linux with lot of new features to covering bushiness requirements that previous version can’t cover those requirements. it’s a major version and we’ll see big changes in GA version.

Some new packages are added to the image and some of packages, drivers and features have been removed in this version.

399 total views, 41 views today

Virtual Environments Vulnerability Assessment By GSM (OpenVAS) – Part 1

Vulnerability Assessment

In virtual environments, any vulnerability has affect on virtual infrastructure and those who get the service including internal and external services. So at least, any organization should have process to identifying vulnerabilities. Identifying vulnerabilities needs tools in IT infrastructure to scan devices, operating systems and applications and find vulnerabilities (Especially security vulnerabilities).

544 total views, 39 views today

Teimouri.net © 2012 Frontier Theme