TOC & Recently Viewed

Passive Vulnerability Scanner 3.8.0 Release Notes - 12/4/2012

Note: Passive Vulnerability Scanner (PVS) is now known as Nessus Network Monitor (NNM).

The following list describes many of the changes that are included in PVS 3.8, as well as significant issues that have been resolved and notes for upgrading. A PDF file of these release notes is also available here.

Upgrade Notes

Upgrades are only supported for those users running PVS 3.6.0 and later. Users upgrading from an older version must first perform an upgrade to PVS 3.6 before attempting to install version 3.8 or uninstall the previous version and performing a fresh installation of PVS 3.8.

PVS 3.8.0 is compatibile with existing versions of SecurityCenter 4.x and the new SC 4.6 release, however for integration with SC 4.6 you must ensure that the nessus-report format is enabled in the pvs.conf file.

Stop the PVS daemon before performing the upgrade:
# /etc/init.d/pvs stop

The command syntax for an RPM upgrade is as follows:
# rpm -Uvh [RPM Package File Name]

Supported Platforms

Support is available for the following platforms:

  • Red Hat Linux ES 5 / CentOS 5 32/64-bit
  • Red Hat Linux ES 6 / CentOS 6 32/64-bit
  • Windows Server 2008 32/64-bit
  • Windows 7 32/64-bit

The Microsoft Visual C++ Redistributable package is a prerequisite which needs to be installed on Windows before installing PVS. Refer to the documentation for more information.

File Names & MD5 Checksums

File MD5
pvs-3.8.0-es5.i386.rpm [ab12a98e4184265ba8d30e6bf2237c02]
pvs-3.8.0-es5.x86_64.rpm [68e857119975c65220fe3d2fcc161497]
pvs-3.8.0-es6.i386.rpm [b9f0f9eade4aa6d7546442959a39c2cd]
pvs-3.8.0-es6.x86_64.rpm [d45e644c263f372e748badd21625117c]
pvs-3.8.0-i386.exe [b0cb778b4b124a64b8463ef604695b31]
pvs-3.8.0-x64.exe [92755934093f517fe3c636c5e04ab833]

Changes and New Features

New Features

  • PVS now provides the ability to monitor IPv6 traffic including:
    • Real-time host or asset discovery
    • Detection of both encrypted and interactive sessions
    • Monitoring of traffic located within a 6to4 tunnel
    Note: When sending both IPv4 and IPv6 vulnerability data to SecurityCenter, both an IPv4 and IPv6 repository must be selected in the PVS sensor configuration.
  • IPv6 addresses are supported in the configuration of include/exclude filters and for syslog destinations
  • Added support for monitoring both VLAN & non-VLAN traffic simultaneously. Using a "VLAN" prefix for network inclusion VLAN networks can now be declared in the "monitored" and "excluded" networks section of the config file with the following syntax:
    vlan network/subnet;
  • New plugin for Server Connections (ID 15); Similar to "show connections" but identifies the clients a "server" has established trusted relationships with
  • Supports a user-defined port number for syslog destinations instead of just the default

Additional Improvements

  • Reduced the default report-lifetime value to 7 days from 30. This is more closely inline with the default value used by SecurityCenter. If upgrading from a prior PVS version, it is recommended to manually change this value to 7.
  • Improved real-time logging performance
  • Tightened the file permissions of configuration files on Windows installations
  • Added support for additional Nessus plugin tags. These will be included in the plugin feed in the near future.

Bug Fixes

  • Addressed an issue that prevented the aging out of Knowledgebase Entries
  • Addressed an issue with the transfer of large reports from PVS Proxy to SecurityCenter

Removed Functionality

  • Removed the ability to generate XML and HTML reports
  • Removed the "strip-vlan-tags" option in the config file in lieu of the new VLAN filtering syntax described above

Known Limitations

  • Does not support IPv6 connectivity for the management connection from SecurityCenter (pvs proxy)
  • There is no support for Teredo tunnels or IPv6 Extension Headers

Copyright 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.