On Donnerstag, 1. November 2007, Jan-Oliver Wagner wrote: > On Donnerstag, 25. Oktober 2007, Jan-Oliver Wagner wrote: > > Well, and this is where I am struck right now. > > Need to find out about how to debug why nothing > > happens, whether the plugins are executed at all, > > how to pull information from the knowledge base > > etc. > > just FYI: I have a working debian local security check here now. > Quite a long path to go, I will send the information soon and check in > what was necessary. First, we need a new openvas-libnasl release.
Meanwhile openvas-libnasl 0.9.2 is released. Next, I drafted this page: http://www.openvas.org/performing_lsc.html which is neither checked in yet nor linked. Especially this page explains an improved (and necessary method to create the key for the local security checks). Finally, I assembled the following files as a minimum set: debian_DSA-1193.nasl (from nessus-plugins 2.2.10) patched to use ssh/login/packages and sspackage_list.nasl find_service.nes (openvas-plugins 0.9.0) global_settings.inc (from nessus-plugins 2.2.10) global_settings.nasl (from nessus-plugins 2.2.10) debian_package.inc (from nessus-plugins 2.2.10) this is buggy and I patched it very dirty to behave better for at least Debian Sarge. ssh_authorization.nasl (implemented by myself) ssh_func.inc (from nessus-plugins GPL-2.2.5) added some patches as happened for ssh_func.inc from openvas-plugins 0.9.0) Maybe replace with ss_ssh_func.inc, in case Thomas might contribute this as well (how do they compare?). sspackage_list.nasl (submitted by Thomas Reinke) this replaces outdated ssh_get_info.nasl patched to depend on ssh_authorization.nasl and use ssh_func.inc. Now, it might be wise to patch sspackage_list.nasl to set kb item Host/Debian/dpkg-l as expected by and debian_DSA*.nasl. Also, I'd like to issue the nice .inc files from Thomas for version checking but need some sample to more quickly understand how to do it (and replace debian_package.inc eventually). If I do not get feedback I will check in the scripts to openvas-plugins but first patch sspackage_list.nasl so that I do not have to touch debian_DSA*. Also, I will add all missing debian_DSA* available from nessus-plugins 2.2.10. Finally, we need to have a symbolic link from sspackage_list.nasl to ssh_get_info.nasl to have the debian_DSA* happy. Best Jan -- Dr. Jan-Oliver Wagner Intevation GmbH, Osnabrück Amtsgericht Osnabrück, HR B 18998 http://www.intevation.de/ Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-devel mailing list Openvas-devel@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
