> I thought this supported ssh v2, so I suspect something is fishy in the > ssh implementation. I started looking at that, but it looked complex. > > Does anyone have this working?
I do have this combination working, but not from SVN. I am using the openbuildservice packages. 3.x LSC (Local Security Checks) does seem to be more sensitive to DNS issues than 2.x, so it might be worth making sure your DNS settings are in order. > sshd 26 [auth.info] sshd[23979]: Protocol major versions differ for > 127.0.0.1: SSH-2.0-OpenSSH_4.7p1 Debian-8ubuntu1.2 vs. SSH-1.33- > OpenVASSSH_1.0 > sshd 26 [auth.info] sshd[23981]: Protocol major versions differ for > 127.0.0.1: SSH-2.0-OpenSSH_4.7p1 Debian-8ubuntu1.2 vs. SSH-1.5- > OpenVASSSH_1.0 > sshd 26 [auth.info] sshd[23988]: Invalid user from 127.0.0.1 > sshd 26 [auth.info] sshd[23527]: Bad protocol version identification > \'QUIT\' from 127.0.0.1 > These are normal and are (IIRC) actually SSH checks and not the scanner attempting to login to perform the LSCs. > openvassd 1d [daemon.notice] openvassd: user om : testing 127.0.0.1 > (::ffff:127.0.0.1) [22568] > openvassd 1d [daemon.notice] openvassd: SIGSEGV occured ! > openvassd 1d [daemon.notice] openvassd: Process 22574 seems to have died > too early > openvassd 1d [daemon.notice] openvassd: process_internal_msg for > openvas_tcp_scanner.nes returned -1 > openvassd 1d [daemon.notice] openvassd: shared_socket: Secret/SSH/socket > is unknown That doesn't look good, though. SVN is always a gamble, perhaps you want to try the binary packages at: http://download.opensuse.org/repositories/security:/openvas:/UNSTABLE/ --------------------------------- Geoff Galitz Blankenheim NRW, Germany http://www.galitz.org/ http://german-way.com/blog/ _______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
