“With great bandwidth comes great responsibility.”
Why We Chose Nessus #
In a school district environment, the IT landscape is broad and continually evolving. Between student-issued devices, faculty endpoints, and networked infrastructure, maintaining visibility into vulnerabilities is essential.
Tenable Nessus offers a comprehensive and reliable solution for vulnerability scanning. It enables our team to identify outdated software, exposed services, and misconfigurations before they become security incidents.
Why Docker? #
Running Nessus inside a Docker container allowed us to streamline deployment and manage the application more effectively across our infrastructure.
Key benefits:
- Fast deployment – Minimal setup effort and consistent configuration across environments.
- Container isolation – Limits the impact on host systems and makes resource management easier.
- Simplified maintenance – Docker makes it easy to manage updates and rollbacks.
Deployment Using Docker Compose #
Below is the configuration we used to deploy Nessus with Docker Compose:
1---
2version: "3.1"
3services:
4
5 nessus:
6 image: tenableofficial/nessus
7 restart: always
8 container_name: nessus
9 environment:
10 ACTIVATION_CODE: "Your Code Here"
11 ports:
12 - 8834:8834
13 security_opt:
14 - no-new-privileges:true
Nessus has been a great addition to our cybersecurity toolbox. The reports are extremely valuable and something you can use to present issues to the administration. If you are looking for a solution to shine a light on vulnerabilities we have been very happy with Nessus.