Hello Shawn, Local checks are working in general. As Tim mentioned, OpenSSH is being looked at to make it better. Please see my inline comments,
-----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Shawn Duffy Sent: Thursday, March 19, 2009 8:25 PM To: [email protected] Subject: [Openvas-discuss] Local checks and SSH > Tired of hearing from me yet? :-) > So, I'm setting a username and password in the client prefs as follows: > SSH Authorization[entry]:SSH login name: <|> USERNAME > SSH Authorization[password]:SSH password (unsafe!): <|> PASSWORD Please verify your credentials by manually performing ssh from the OpenVAS host to the target. > I'm also enabling local checks for the operating system of the target. > But, the local checks aren't being triggered. Here are some of the > errors from openvasd.messages and openvasd.dump: > openvasd.messages:[Thu Mar 19 10:51:16 2009][30128] shared_socket: > Secret/SSH/socket is unknown > openvasd.messages:[Thu Mar 19 10:40:09 2009][29924] user USER : Not > launching ovcesa2009_0256.nasl against TARGET because the key > ssh/login/rpms is missing (this is not an error) > openvasd.messages:[Thu Mar 19 10:40:09 2009][29924] user USER : Not > launching gb_CESA-2008_0161_cups_centos5_x86_64.nasl against TARGET > because the key ssh/login/release is missing (this is not an error) > openvasd.dump:SSH-DEBUG: Not setting login information for local checks > at a3s-mtc1.itsec.aol.com : No mapping found. Check the logs to see if gather-package-list.nasl is getting launched. Also make sure that ssh_get_info.nasl is not there in your Plugins set. Monitor the KB items that are getting set under, /usr/local/var/lib/openvas/users/OPENVAS_USER/kbs/HOST_NAME (/usr/local varies according to the installation) Specifically, check "Secret/SSH/login" and "Secret/SSH/password". I suspect these KB items are not getting set. Also, you could try with "silent_dependencies = no" for getting more information. Thanks, Chandra. _______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
