Hello, the OpenVAS community is proud to announce the release of OpenVAS-6!
April 17th, 2013 OpenVAS-6 released: Integrated security information and integration with security tool chain In keeping with the annual release cycle, the new generation of OpenVAS [1] has been released. The open framework for vulnerability scanning and management, OpenVAS-6 introduces a comprehensively extended and improved feature set. Main advances/improvements were under taken in three domains: 1. improvements to the user interface for power users as well as for beginners, 2. comprehensive integration of international and regional security information and 3. integration with the security tool chain. Highlights of this new release are the power filter concept and security information management. The latter integrates not only official cross reference of SCAP data right into scan results; with integrating security data of a major German computer emergency response team, DFN-CERT [2], it also adds analysis and reporting capabilities considering regional language and a regional security focus. Improved scan capabilities, password policies, a scan wizard and various other elements round up the new additions into this new generation of OpenVAS. Special attention was given to the integration with the security tool chain via a plugin for the system monitoring family around Nagios [3] and a connector for integrating with the information security management system (ISMS) verinice.PRO [4]. All in all 15 new features were added, accompanied with countless improvements. The systematic improvements and reliable release of one major update every twelve months once again underline the position of OpenVAS as the most advanced Open Source solution for vulnerability management. The new version can be downloaded free and is available as Free Software under the GNU GPL license. The company Greenbone Networks [5] develops and uses OpenVAS as a basis for its appliance product family for vulnerability scanning and management. Together with the companies SecPod [6], SecuritySpace [7] and the wider community, new vulnerability tests and feature improvements are developed on a daily basis. The German Federal Office for Information Security (BSI) [8] supports and utilizes OpenVAS, together with many other federal agencies, as part of their IT security framework. The company Greenbone Networks [5] develops and uses OpenVAS as a basis for its appliance product family for vulnerability scanning and management. Together with the companies SecPod [6], SecuritySpace [7] and the wider community, new vulnerability tests and feature improvements are developed on a daily basis. The German Federal Office for Information Security (BSI) [8] supports OpenVAS and uses it, together with many other federal agencies, for their IT security framework. OpenVAS-6 can be experienced live at the Linuxtag Conference and Exhibition in Berlin (Germany) [9] from 22nd to 25th of May 2013 at the BSI booth. New features: * Powerfilters: These allow filtering and sorting across various objects, can be stored, managed and reused. Also, default powerfilters can be configured. * Management for Tasks, Note, Overrides, all of SecInfo Management and all of Configuration: The new object management offers consistently browsing, the powerfilter, cloning and export. Also the "New/Import" elements are now pages of their own. * Auto-FP feature for trusted vendor updates. * Multiple alerts per task. * Wizard framework with quick start wizard. * SecInfo Management a menu of its own. * CPE, CVE and NVTs now offer full search and browsing. * OVAL information in SecInfo Manegement. * DFN-CERT information in SecInfo Management. These information are in german from a german CERT. It is a sample on how regional CERT information can be integrated. Further may follow upon interest. * Synchronisation of SCAP/CERT data can be triggered from the web interface. * Support for ISMS tool "verinice" with Report Format Plugins and Alert for verinice.PRO. * Alert for sending results to a verinice .PRO server. * Password policies for OpenVAS user accounts. * CLI: OMP based Nagios plugin. * CLI: (Sample) ncurses based OMP interface. Improved features: * Date selection for schedules. * Powerfilters can now be attached to Alerts. * Now handles daylight saving in schedules. * When importing a report, now the host details are also imported. * Added switch to control whether a task should contribute to asset management. * Report exports now also contain the family of NVTs. * Faster report format plugins LaTeX and PDF. * Manager: Serves OMP even when the OpenVAS Scanner is down. * Manager: Can now handle a second OMP address. * Scanner: Optional OTP version 1.1 which is like 1.0 but sends less info to the client initially. * Scanner: Command line switch "--only-cache" to just build the cache and exit. Changed features: * Renamed "Escalator" to "Alert". * The ARF report format plugin is now a pre-defined format. * Various performance improvements. * Out-of-source builds for all modules supported and recommended. * For all modules, -Werr has been moved from Release to Debug when building. * The minimum required version of GNUTLS is now 2.8. * Scanner: Removed built-in logfile rotation. The system environment technology for logrotate should be used instead. * Scanner: The magic that NVTs of category ACT_SETTINGS were always enabled even when user disabled them has been removed. OTP clients now have to take care to enable as needed.* Changed behaviour of NVT sync script "openvas-nvt-sync": It will now delete scripts not part of the when using rsync, except for the directory "private/". A Migration option "--migrate-to-private" of the sync-script will move private scripts into the "private/" directory. The Feed Sync will stop with an error until the "private/" is created. As soon as this directory is created, the synchronisation will ultimately delete all files in the local feed directory that are not part of the regular Feed. * Scanner: Newlines in script tags are now escaped. * Scanner: The size of tags is not limited anymore. * Scanner: Internal use of NVTI references by OID to allow using the NVTI cache properly. This significantly lowers the memory consumption per Scanner process. Downloads: * Source Codes: http://www.openvas.org/install-source.html * Binary installation packages (Upcoming!): http://www.openvas.org/install-packages.html * Virtual Appliance (Upcoming!): http://www.openvas.org/vm.html Compatibility and migration: * The OpenVAS NVT Feed will be extended with tests that take advantage of the network scan feature but fully keeps the behaviour for previous releases. * The OpenVAS Manager has a migration option for updating an OpenVAS Manager 3.0 SQL database. But there is no support to downgrade the database back to 3.0. * If using persinal NVTs, please see the details above about migrating them to a special directory. * It is highly recommended to test and verify a migration only with a full backup. * For upgrades from old OpenVAS-4, please also refer to the OpenVAS-5 announcement. References: [1] OpenVAS: http://www.openvas.org/ [2] DFN-CERT: https://www.cert.dfn.de/ [3] Nagios: http://www.nagios.org/ [4] verinice: http://www.verinice.org/ [5] Greenbone: http://www.greenbone.net/ [6] SecPod: http://www.secpod.com/ [7] SecuritySpace: http://www.securityspace.com/ [8] BSI: https://www.bsi.bund.de// [9] Linuxtag: http://www.linuxtag.org/2013/en.html Best regards Jan-Oliver Wagner -- Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-announce mailing list Openvas-announce@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-announce
