Author: jan Date: 2008-01-03 15:57:55 +0100 (Thu, 03 Jan 2008) New Revision: 568
Modified: trunk/doc/website/nvt-feeds.htm4 Log: Added a brief description on how the feed server is set up. Modified: trunk/doc/website/nvt-feeds.htm4 =================================================================== --- trunk/doc/website/nvt-feeds.htm4 2007-12-30 02:51:46 UTC (rev 567) +++ trunk/doc/website/nvt-feeds.htm4 2008-01-03 14:57:55 UTC (rev 568) @@ -9,7 +9,7 @@ m4_dnl Jan-Oliver Wagner <[EMAIL PROTECTED]> m4_dnl m4_dnl Copyright: -m4_dnl Copyright (C) 2007 Intevation GmbH +m4_dnl Copyright (C) 2007, 2008 Intevation GmbH m4_dnl m4_dnl This program is free software; you can redistribute it and/or modify m4_dnl it under the terms of the GNU General Public License version 2, @@ -135,3 +135,62 @@ However, the <a href="trusted-nvts.html">NVTs are signed</a> with the OpenVAS Tansfer Integrity certificate. </p> + +<h3>How is the NVT Feed Server itself created</h3> + +<p> +This section describes how the feed server itself +is setup mainly for transparency purposes. +It is not necessary for users to set up +such a server. It is strongly recommended that +you coordinate with the OpenVAS team if you +want to offer NVTs via a feed service to avoid +a scattered availability of NVTs. +</p> + +<p> +The steps as explained in the following assume +you are familiar with unixoid systems and the typical +tools any system administator know from his/her daily +work. +</p> + +<p> +Also note, that this is a simple version of a NVT server +as used for the sample feed of OpenVAS. A more sophisticated +version is in preparation. +</p> + +<ol> +<li>Configure rsyncd to server a directory of your choice. + E.g. a section like this in /etc/rsyncd.conf: + <pre> + [my-feed] + path = /home/my-nvt-feed + comment = My NVT feed, see http://www.openvas.org/ + </pre> + +<li>Place all NVTs (*.nasl files) and NASL libraries (*.inc files) + in the respective directory (here /home/my-nvt-feed) + +<li>Place all signatures (*.nasl.asc files) in the same directory. + + <p> + Maybe you have not created the signatures yet, this is how + you could sign all of the files in one go (you need to do + this on a system where your signing is available, of course): + </p> + + <pre> + $ eval $(gpg-agent --daemon) + $ cd /home/my-nvt-feed + $ for f in *.nasl *.inc; do gpg --use-agent --detach-sign -a $f; done + </pre> + +<li>Create the md5sums file: + + <pre> + $ md5sum *.nasl* *.inc* > md5sums + </pre> +</ol> +</p> _______________________________________________ Openvas-commits mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-commits
