nessus漏扫修复记录

[root@localhost ~]# nmap -sU -p161 -script=snmp-brute 127.0.0.1

Starting Nmap 6.40 ( http://nmap.org ) at 2021-11-09 07:35 CST
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000033s latency).
PORT    STATE  SERVICE
161/udp closed snmp

Nmap done: 1 IP address (1 host up) scanned in 0.27 seconds

[root@VM_Server ~]# net-snmp-create-v3-user
Enter a SNMPv3 user name to create: 
snmpuser
Enter authentication pass-phrase: 
snmpv3@2020md5
Enter encryption pass-phrase: 
  [press return to reuse the authentication pass-phrase]
snmpv3@2020des
adding the following line to /var/lib/net-snmp/snmpd.conf:
   createUser snmpuser MD5 "snmpv3@2020md5" DES snmpv3@2020des
adding the following line to /etc/snmp/snmpd.conf:
   rwuser snmpuser

生效后可以查看到配置文件中的新增

启动snmp服务后，使用snmpwalk命令验证

snmpwalk -v3 -usnmpuser -lauth -aMD5 -A"snmpv3@2020md5" -X"snmpv3@2020des" 127.0.0.1

[root@localhost ~]# nmap -sS -sV -Pn -p 445 --script="smb-security-mode" 127.0.0.1

Starting Nmap 6.40 ( http://nmap.org ) at 2021-11-09 07:22 CST
Nmap scan report for localhost (127.0.0.1)
Host is up (0.000032s latency).
PORT    STATE SERVICE     VERSION
445/tcp open  netbios-ssn Samba smbd 3.X (workgroup: LOCALHOST)

Host script results:
| smb-security-mode: 
|   Account that was used for smb scripts: guest
|   User-level authentication
|   SMB Security: Challenge/response passwords supported
|_  Message signing required

Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 6.38 seconds

修改/etc/ssh/sshd_config文件，最后一行添加如下内容
 

Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,arcfour

Macs hmac-sha1,hmac-ripemd160

使用ssh命令验证

ssh -vv -oCiphers=aes128-cbc,3des-cbc,blowfish-cbc  目标IP
ssh -vv -oMACs=hmac-md5  目标IP

使用Nmap验证

nmap --script ssh2-enum-algos -sV -p 22  目标IP