On Donnerstag, 17. Februar 2011, Jan-Oliver Wagner wrote: > we are almost there. Here is the list of TODOs I see > for getting OpenVAS-4 out finally.
I target this week for the release if all goes well. > Software: > - an icon patch for GSA > - a more comprehensive patch about Post-Requests and cookies in GSA > - a patch about signature checks in Manager > - New releases of: Libraries, CLI, Scanner, Manager, GSA after the above > patches have been applied. All works are done. The releases were done today. > Packages: > - Update to final releases once published (OBS and Atomic) Work can start right away. > - Add a quickguide for Atomic-Fedora to > http://www.openvas.org/install-packages.html > (Scott is on it) Scott? > - Add a quickguide for OBS-Ubuntu also > (Michael is on it) Done. > - Update table "All Available OpenVAS Packages" with OpenVAS-4. Stephan: I guess once the final packages are produced, you will be moving (or copying) "UNSTABLE/v4" to "STABLE/v4"? Once you have done, so, please notify me and I will do a comprehensive update of the table at http://www.openvas.org/install-packages.html#all_packages with the appropriate links etc. > VM: > - Create a single "OpenVAS-4 Appliance Community Edition" > based on OBS OpenSUSE 11.3 > (Geoff is on it. Actually: Perhaps a first trial with the current packages > makes already sense if easy to update to the final packages later on) Geoff: Anything where we can test already? > PR: > - Write a News about OpenVAS-4 > (I will assemble all details about the release) I have attached a HTML draft of all collected information. Any help to iprove this is welcome. That text is supposed to go to openvas-announce mailing list and online into our news section. > - Push news everywhere Once all above done :-) > Anything I forgot? It is still OK to speak up :-) Best Jan -- Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
<h3>February Nth, 2011 - OpenVAS-4 released</h3> <p> The OpenVAS community is proud announce the availability of OpenVAS-4, the next generation of the Open Vulnerability Assessment System. Though only seven months since OpenVAS 3.1, the new release represents the biggest step forward ever in the history of OpenVAS. </p> <p> Most significant new features are a Report Format Plugin Framework, a Master-Slave mode and improved Scanner. The extended OpenVAS Management Protocol (OMP) 2.0 of OpenVAS Manager makes several new features consistently available to all of its clients (Web, Desktop, CLI). </p> <p> This is the first release that is directly accompanied with installation packages for over 20 platforms, several installation quick guides, a tool to check proper setup and, last but not least a virtual appliance. </p> <p> OpenVAS-4 covers the following OpenVAS modules: Libraries 4.0, Scanner 3.2, Manager 2.0, Administrator 1.1, GSA 2.0, GSD 1.1 and CLI 1.1. </p> <p> Availability: </p> <ul> <li><p> Source Codes downloads are directly available from OpenVAS homepage: http://www.openvas.org</p></li> <li><p> Binary installation packages: http://www.openvas.org/install-packages.html</p></li> <li><p> Virtual Appliance: http://www.openvas.org/vm.htm</p></li> </ul> <p> New features and changes: </p> <ul> <li><p> New: Report Format plugin framework. All previous reporting features were converted to plugins. The XML representation of a report is now the base for any plugin and thus consistency of reports is improved. </p> <p> Report Format Plugins can be set active so that they appear in the selection lists. Selections can consider content types so that for example only the plugins with content type "text" are offered as email body. </p> <p> It is possible to use parameters for the plugins so the user can adjust the behaviour of the Report Format to the individual preferences or needs. </p> <p> A verification method allows to distribute signatures for valid plugins via the NVT Feed. </p> </li> <li><p> New default Report Format: TXT for simple text. </p></li> <li><p> New default Report Format: LaTeX for LaTeX source. </p></li> <li><p> New sample Report Format: Simple Bar Chart. Demonstrates how to use Gnuplot for graphical reports. </p></li> <li><p> New sample Report Format: Simple Topo Plot. Demonstrates how to use Graphviz for graphical reports. </p></li> <li><p> New sample Report Format: Simple Pie Chart. Demonstrates how to use PyChart for graphical reports. </p></li> <li><p> New sample Report Format: Simple Map Plot. Demonstrates how to use MapServer and GDAL for graphical reports. </p></li> <li><p> New sample Report Format: Sourcefire Host Input. Demonstrates that Report Formats can be used to build connectors. </p></li> <li> <p> New: Master-Slave mode. Any OpenVAS Manager can use one or many other OpenVAS Manager as slave to run scans. The whole scan task is transferred to the slave, results are continuously reported to the Master during scan process. After the scan is finished all data are removed from the slave. </p> <p> The master can also retrieve system reports from the slave and thus can collect the performance overview for all configured slaves. </p> </li> <li> <p> New Escalator: HTTP GET. This allows for example to access text message (SMS) gateways or ticket management systems. </p></li> <li><p> Extended Escalator: For email escalation it is now possible to select from configured Report Formats to be included in the email body.</li></p> <li><p> Agents: A verification method was added. This allows to distribute signatures for valid agents via the NVT Feed.</li></p> <li><p> Credentials: Can now be edited. This allows to change the login name or password without the need to create a new scan configuration. </p></li> <li><p> Credentials: Auto-generated installer packages are now created on the fly. If the generators are improved, it is now easy to create an updated package for already existing credentials. </p></li> <li><p> Targets: Credentials for SMB and SSH are now distinguished. </p></li> <li><p> Targets: Various opportunities have been added to specify and combine IP ranges and ports. </p></li> <li><p> Tasks: The task overview is delivered much faster now. </p></li> <li><p> Reports: The report filtering is much faster now. </p></li> <li><p> Performance: A fall-back performance report delivers some base data if no other tool is configured. </p></li> <li><p> Web interface: Changed login mechanism from HTTP BasicAuth to session based authentication. </p></li> <li><p> Scan behaviour: By default now only ports are scanned that are specified as part of the target. </p></li> <li><p> No binary NVTs: The remaining binary NVTs are turned into built-in functionality. Binary plugins are (finally) no more supported by OpenVAS. </p></li> <li><p> Network scan NVTs: Network-wide initial scans now posible. </p></li> <li><p> Scan performance increased: Lower memory footprint (~10% more concurrent scans possible) </p></li> <li><p> Scan Feature for VHosts: Preferences allow to specify VHosts. </p></li> <li><p> Scanner: Command line options "--dump-cfg" and "--gen-config" are removed. </p></li> <li><p> Scanner: Configuration file "openvassd.conf" not mandatory anymore. </p></li> <li><p> Helper tool openvas-mkcert: New switches and does not create openvassd.conf. </p></li> <li><p> OpenVAS is now compliant with the Filesystem Hierarchy Standard (FHS 2.3). </p></li> <li><p> Consolidated default ports: Manager listens on 9390, Scanner on 9391, GSA on 9392 and Administrator on 9393.</p></li> <li><p> OpenVAS build environment now consistently uses cmake and pkgconfig across all modules. </p></li> <li><p> Compile-time hardening flags are now enabled by default across all modules. </p></li> <li><p> All applications now consistently deliver output of --version compliant with the GNU Coding Standard. <li><p> OMP self-documentation: Part of the Managers' XML-based communication protocol OMP 2.0 is to deliver the full specification and documentation of the protocol itself (command "HELP"). It can be retrieved as XML-, RNC- or HTML representation. See here for online documentation: http://www.openvas.org/omp-2-0.html </p></li> <li><p> OAP self-documentation: Part of the Administrators' XML-based communication protocol OAP 1.0 is to deliver the full specification and documentation of the protocol itself (command "HELP"). It can be retrieved as XML-, RNC- or HTML representation. See here for online documentation: http://www.openvas.org/oap-1-0.html </p></li> </ul> <p> Compatibility and migration: </p> <ul> <li><p> The OpenVAS NVT Feed will be extended with tests that take advantage of the network scan feature but fully keeps the behaviour for previous releases. Also the replacement methods for the former binary NVTs are compatible across OpenVAS 2 through 4. </p></li> <li><p> The OpenVAS Manager has a migration option for updating a OpenVAS Manager 1.0 SQL database. But there is no support to downgrade the database back to 1.0. </p></li> <li><p> OpenVAS Scanner remains compatible with the previous release, so the latest release of the old OpenVAS-Client still works. </p></li> </ul>
_______________________________________________ Openvas-devel mailing list Openvas-devel@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-devel
