Overview

You are getting Windows-related errors and experience various timeout issues while scanning Linux target computers. 

This article guides you on creating a new Scanning Profile to use for the Linux scans.

Solution

Create a new scanning profile for the Linux targets using the options below:

1. In the Vulnerability Assessment Options, Group Vulnerabilities by Type and leave selection only on the Linux related groups:
   • DNS
   • FTP
   • Mail
   • Miscellaneous
   • Services
   • Web
2. Under Potential Vulnerabilities, select the following options:
   

   

3. Under the Patches tab, enable Detect installed and missing software updates and service packs.
   

   

4. Under Network & Software Audit Options tab:
   1. Enable TCP and UDP port scanning from their tabs.
   2. For System Information, enable only the Linux System Information checks.
   3. For Devices, deselect Enable scanning for hardware devices on target computer(s).
   4. For Applications, select Enable scanning for installed applications on target computers and Enable full security applications audit for agent-less scans.
5. Under Scanner Options:
   • set the SSH timeout value to at least 60000.
   • set the UDP port scan query timeout to at least 6000.
     

     

   • NOTE: If there is an issue scanning the devices with this profile configuration check the Ping Sweep option and enable it if disabled.

Testing

Update LanGuard server manually and scan the Linux machines again using this new Scanning Profile for Linux machines.