Hello, the OpenVAS community is proud to announce the release of OpenVAS-5!
OpenVAS-5: New Asset-Management, Delta-Reports and embedded SCAP-Data. One year after OpenVAS-4 the fifth version of the tool for vulnerability scanning and management offers several new features. At the same time the number of freely available vulnerability checks has increased to over 25,000. A very practical extension is the possibility to show the differences between two scan reports and the direct availability of current CPE and CVE information inside the OpenVAS database. This saves time for users who are finding out about changes and security recommendations. The new asset management adds a second view on scan results. It allows the user to review scan results for any selection of IP devices in the network. All in all 20 new features were added, especially focusing on simplifying daily use. The systemtic improvements underline the position of OpenVAS as the most advanced Open Source solution for vulnerability management. The new version can be downloaded free and is available as Free Software under the GNU GPL license. The company Greenbone Networks develops and uses OpenVAS as a basis for its appliance product family for vulnerability scanning and management. Together with the companies SecPod, SecuritySpace and the wider community new vulnerability tests and feature improvements are developed on a daily basis. The German Federal Office for Information Security (BSI) supports OpenVAS and uses it, together with many other federal agencies, for their IT security framework. OpenVAS-5 can be experienced live at the Linuxtag Conference and Exhibition in Berlin (Germany) from 23rd to 26th of May 2012 at the BSI booth. New features: * Delta reports to analyse differences between two scans. * Security Information Database: Integrated SCAP data (CPE, CVE) including update method via feed service. * Integrated Asset Management. * Configuration object 'Port Lists' for transparent TCP/UDP port ranges. * Prognostic scans based on asset data and current SCAP data. * Support for individual time zones for users. * Support for obeservers (granting read-only access) * Support for notes/overrides lifetimes. * Trashcan for collecting removed items before ultimate deletion. * Container tasks for importing reports. * SSH port for Local Security Checks configurable. * Product detections as reported by Scanner are handled to allow detailed cross-referenced detection information. * Support for sorting results by CVSS score. * Support for importing results sent through the XML escalator. * Support for escalating result to a Sourcefire Defense Center. * Support for using an SSH key pair for SSH authentication. * Individual user settings, starting with time zone. * Display single result details. * Icon indicators for detected operating systems. * LDAP per-user authentication method. Improved features: * Updated builtin Report Format Plugins HTML, Text and LaTeX/PDF to reflect various new features that are already present in GSA, including delta and prognostic reports. * Product detection information in results XML. * Performance for massiv scanner results by using transaction groups. * Import of Target lists to allow comma-separated, line-by-line lists. * Support for large database files on 32-bit platforms. Changed features: * The user interface design of the web interface has been updated. * Report format signatures no longer contain user editable fields. Thus, users can change comments without loosing validity of plugins. * The max_host and max_checks scan performance parameters have been moved from scan configs to tasks. * Security: Enforces strict permissions on sensitive OpenVAS Manager files. * Security: Drop privileges before executing report format plugins if running with elevated privileges. Downloads: * Source Codes: http://www.openvas.org/install-source.html * Binary installation packages (Upcoming!): http://www.openvas.org/install-packages.html * Virtual Appliance (Upcoming!): http://www.openvas.org/vm.html Compatibility and migration: * The OpenVAS NVT Feed will be extended with tests that take advantage of the network scan feature but fully keeps the behaviour for previous releases. * The OpenVAS Manager has a migration option for updating an OpenVAS Manager 2.0 SQL database. But there is no support to downgrade the database back to 2.0. * It is highly recommended to test and verify a migration only with a full backup. * For upgrades from old OpenVAS 3.x, please also refer to the OpenVAS-4 announcement. Best regards Jan-Oliver Wagner -- Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-announce mailing list [email protected] http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-announce
