Hello,

the OpenVAS developers are happy to announce the release of
openvas-client 2.0.2.

This is the second maintenance release of the openvas-client module for
the Open Vulnerability Assessment System (OpenVAS) 2.0-series.

It fixes some issues discovered after the release of openvas-client
2.0.1 and especially offers the further matured "OpenVAS LSC Credentials
Manager" that can be used in conjunction with a new
ssh_authorization.nasl which is available via the OpenVAS NVT Feed.  If
you are doing a lot of local security checks this might make your life
easier.
Thanks to the continuing audit of the code, a number of obsolete, unused
and/or unnecessary functions were identified and removed.

Effects when installing this version:

* New default port of the server: Please be aware that openvas-server
  now listens on port 9390 by default since this port has recently been
  allocated by IANA for the Openvas Transport Protocol (OTP). This release
  of the client now uses the same default.

* Option "Silent dependencies" is now "off" by default. Previously it was
  set to "on". If you didn't pay attention to this option in the past
  you might experience larger reports now.

Main changes since 2.0.1:

* The timeout-setting functionality has been made more robust. It has been moved
  to the plugin info dialog to make accessing this functionality easier.
* A counter column for log messages has been added.
* XML exports: A bug (http://bugs.openvas.org/867) which caused a corrupted
  protocol attribute during XML export when service names contained slashes has
  been fixed. This also fixes another bug which caused service names to show up
  in the protocol attribute.
* A bug which prevented the display of signatures due to sometimes different
  "fingerprint" lengths has been fixed.
* A bug which prevented the client from correctly determining certain server
  preference settings has been fixed.
* Established automated source code documentation. HTML-Version is available
  under http://www.openvas.org/src-doc/openvas-client/current/index.html
* Openvas-client now uses the IANA-assigned port 9390 for communication
  with the server.
* A bug (http://bugs.openvas.org/858) which cause a segmentation fault when
  trying to list preferences or plugins on the command line without enabling
  batch mode has been fixed. 
* Support for improved management of SSH credentials has been added in
  accordance with Change Request #20 (http://www.openvas.org/openvas-cr-20.html)
* The "Silent Dependencies" option now defaults to "no". Setting this option to
  "yes" causes possible error messages from NVTs executed as dependencies to not
  show up in client which is not desirable from a security viewpoint.

Many thanks to everyone who has contributed to this release: Joey Schulze,
Michael Wiegand and Felix Wolfsteller.

Regards,

Michael Wiegand

-- 
Michael Wiegand |  OpenPGP key: D7D049EC  |  http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998
Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner

Attachment: pgp7SbSjpkvrm.pgp
Description: PGP signature

_______________________________________________
Openvas-announce mailing list
Openvas-announce@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-announce

Reply via email to