Re: Introduction to Nessus
Originally posted by \/IP3R
Nessus is a public domain program released under the GPL. Historically, many in the corporate world have ridiculed such public domain software as being a waste of time, instead choosing "supported" products developed by established companies. Typically these packages cost hundreds or thousands of dollars, and are often purchased using the logic that you get what you pay for. Some people are starting to realize that public domain software, such as Nessus, isn't always inferior and sometimes it is actually superior.
I realize that you are simply quoting the article by Harry Anderson verbatim here \/IP3R, so don't take anything here as a correction to your post.
First, I can't let a reference to software licesnsed under the GPL as being 'Public Domain" slide; call me a troll, but this really gets under my skin as it implies an entirely different meaning in legaleese, and Harry Anderson would serve everyone better by calling it what it is, Open Source.
Now, to back Harry up, I don't know of a single commercial security product (except perhaps anti-Virus software) that is superior to the Open or freely available security tools. One trip to http://www.packetstormsecurity.nl will yield more high quality free tools and documentation than any site should ever need to properly secure and monitor their machines and network.
Whew, now with that off my chest... If you don't have Nessus, go get it! If you don't know how to use Nessus, RTFM until you do! if Nessus won't run on your machines beg like a dog for someone to port it to your OS/Arch, or do it yourself if you know how. :)