12. OpenVASのサーバ証明書を作成
n openvas-mkcert コマンドで作成
12
$ sudo openvas-mkcert
/usr/sbin/openvas-mkcert: 63: /usr/sbin/openvas-mkcert: 0: not found
---------------------------------------------------------------------
----------
Creation of the OpenVAS SSL Certificate
---------------------------------------------------------------------
----------
This script will now ask you the relevant information to create the
SSL certificate of OpenVAS.
Note that this information will *NOT* be sent to anybody (everything
stays local), but anyone with the ability to connect to your OpenVAS
daemon will be able to retrieve this information.
CA certificate life time in days [1460]:
Server certificate life time in days [365]:
Your country (two letter code) [FR]: JP
Your state or province name [none]:
Your location (e.g. town) [Paris]: Tokyo
Your organization [OpenVAS Users United]: Tuda College
13. OpenVASのユーザを追加
n openvas-adduserコマンドで作成
n 最後まで行ったらCtrl+Dで終了
13
$ sudo openvas-adduser
/usr/sbin/openvas-adduser: 53: /usr/sbin/openvas-adduser: 0:
not found
Using /var/tmp as a temporary file holder.
Add a new openvasd user
---------------------------------
Login : ytakano
Authentication (pass/cert) [pass] :
Login password :
Login password (again) :
User rules
---------------
29. www.google.comへの通信を遮断(1)
www.google.comのIPアドレスを調べる
n digコマンドでドメイン名からIPアドレスを調べる
29
$ dig www.google.com
;; QUESTION SECTION:
;www.google.com.
IN
A
;; ANSWER SECTION:
www.google.com.
177
IN
A
173.194.38.82
www.google.com.
177
IN
A
173.194.38.84
www.google.com.
177
IN
A
173.194.38.81
www.google.com.
177
IN
A
173.194.38.83
www.google.com.
177
IN
A
173.194.38.80
www.google.comに割り当てられたIPアドレス