Nessus 3.0.0 has been released, but it is now closed-source with only binary packages available (RPM and DEB). ---------- Nessus 3 is a complete rewrite of the Nessus engine, designed for speed and efficency -- as a result, Nessus 3 is on average twice as fast as Nessus 2, (with spikes as high as five times faster) and less resource intensive. The Nessus 3 major enhancements are the following : * New NASL3 engine * Improved plugin storage for faster startup time * Improved networking functions * New scanner architecture to be both efficient and robust * The Nessus daemon fetches the plugins automatically when registered (this can be disabled in nessusd.conf) * Improved error handling Nessus 3 is available on the following platforms : * Red Hat ES3 and ES4 * SuSE 9.3 and 10.0 * FreeBSD 5 and 6 * Fedora Core 4 * Debian 3.1 The following platforms will be supported in early 2006 : * Mac OS X 10.3 and 10.4 * Microsoft Windows 2000/XP Pro/2003 * Solaris 9 and 10 Reproducible: Always Steps to Reproduce:
So, yeah, this isn't really a version bump, but a whole new package in itself. This might be tricky. I'm giving a shot to Nessus-3.0.0-fc4.i386.rpm. I suggest we make this net-analyzer/nessus-bin.
Renaud Deraison says it is ok to add a copy of Nessus's new license to our licenses/ folder, in case anyone was wondering.
Created attachment 74600 [details] Nessus-EULA
Created attachment 74601 [details] nessus-bin-3.0.0.ebuild First ebuild attempt. I am having some trouble with getting it to pick the correct PATH and library directories. We will probably need to get something for /etc/env.d. Also, we may have to craft a new initscript.
Created attachment 76373 [details] 90nessus-bin
Created attachment 76376 [details] nessus-bin-3.0.0.ebuild We can't use Fedora's binary because of RedHat's weird versionining scheme (throwing a bunch of symlinks is not a pretty option). We can't use Debian's binary either, because deb2targz violates the sandbox. SuSE 9.3's binary looks like the best option. I haven't gotten nessusd to run with this ebuild due to an undefined symbol. I was able to register my scanner from command-line nessus, but it wouldn't fetch new plugins complaining that gzip was not found.
Created attachment 76459 [details] nessus-bin-3.0.0.ebuild Use rpm eclass.
Nessus 3.0.1 was released last night. Various improvements and bugfixes, but the most notable ones concerning the Gentoo port are the following: - The RPMs have stronger dependencies set - The SuSE 9.3 build is now linked to the default libdb 4.3 Perhaps give it a go with the Nessus 3.0.1 binaries for SUSE?
Created attachment 76654 [details] nessus-bin-3.0.1.ebuild The good news: nessusd loads plugins and runs. The bad news: it depends on package.mask'ed db-4.3. I tried running it from nessus-client and server shuts down connection before scan runs (SIGPIPE caught).
For the gzip problem: sed -i -e "s:/usr/bin/gzip:/bin/gzip:g" /opt/sbin/nessus-update-plugins
Created attachment 76659 [details] nessus-error.log
Installing from the rpm and using nessus-client (which is in portage) works perfectly, so there is something that is not getting installed properly with this ebuild.
Created attachment 78861 [details] nessus-bin-3.0.1.ebuild It should work fine now.
Created attachment 78862 [details] nessusd-r8
Created attachment 78865 [details] 90nessus-bin
net-analyzer/nessus-bin in cvs now.
