i have called "openvas-mkcert" and "openvas-mkcert-client" and can even login with "openvas-client" and key authentication
followed this (incomplete) instructions: http://kernelreloaded.blog385.com/index.php/archives/volunerability-scanning-with-fedora-openvas/ downloaded "openvas-check-setup" which was not contained in the packages and i get "FIX: Run 'openvasmd --rebuild' while OpenVAS Scanner is running." well, it is running, see below BUT: [root@openvas:/var/log/openvas]$ openvasmd --rebuild Abgebrochen root 2532 0.0 9.6 115536 61496 ? Ss 15:06 0:00 openvassd: waiting for incoming connections root 3052 0.1 10.6 121080 67276 ? Ss 15:36 0:21 openvassd: serving 10.0.0.241 root 3107 0.5 14.9 152512 94976 ? Ss 15:40 1:26 openvassd: serving 10.0.0.241 root 16476 0.0 0.5 83128 3660 ? S 19:45 0:00 /usr/sbin/openvasad --listen=127.0.0.1 --port=9393 --users-dir=/var/lib/openvas/users --scanner-config-file=/etc/openvas/openvassd.conf --sync-script=/usr/sbin/openvas-nvt-sync root 16520 0.0 0.3 434248 2408 ? Sl 19:46 0:00 /usr/sbin/gsad --listen=10.0.0.107 --port=443 --ssl-private-key=/etc/openvas/openvas.thelounge.net.pem --ssl-certificate=/etc/openvas/openvas.thelounge.net.pem --alisten=127.0.0.1 --aport=9393 --mlisten=127.0.0.1 --mport=9390 root 16595 0.0 0.1 111160 892 pts/0 S+ 20:16 0:00 grep --color vas Am 18.12.2011 20:09, schrieb Brandon Perry: > Everything your error messages are saying leads to not being fully > configured. Make sure you have created the necessary users and certs. > > http://www.openvas.org/install-packages.html#openvas4_ubuntu_obs > > These instructions are for ubuntu, but go through the whole setup > process. Use the equivalent commands for your RHEL setup. > > On Sun, Dec 18, 2011 at 12:53 PM, Reindl Harald <h.rei...@thelounge.net> > wrote: >> thank you, after symlink my pem-file for >> "greenbone-security-assistant.service" >> three times it starts: >> >> * /var/lib/openvas/CA/servercert.pem >> * /var/lib/openvas/private/CA/serverkey.pem >> * /var/lib/openvas/CA/cacert.pem >> >> now are running "greenbone-security-assistant.service" and >> "openvas-administrator.service" >> but login is not possible because i get this **ed "openvasmd" not finished >> and the "gsad" references to it :-( >> _______________________________ >> >> Step 2: Checking OpenVAS Manager ... >> OK: OpenVAS Manager is present in version 2.0.3. >> OK: OpenVAS Manager client certificate is present as >> /etc/pki/openvas/CA/clientcert.pem. >> ERROR: No OpenVAS Manager database found. (Tried: >> /var/lib/openvas/mgr/tasks.db) >> FIX: Run 'openvasmd --rebuild' while OpenVAS Scanner is running. >> >> openvasmd --rebuild >> +++ killed by SIGABRT +++ >> >> [root@openvas:/var/log/openvas]$ cat openvasmd.log >> md main:WARNING:2011-12-18 14h21.48 utc:2825: init_manage_process: >> database permissions are too loose, repairing >> md main:WARNING:2011-12-18 14h21.48 utc:2825: init_manage_process: chmod >> failed: No such file or directory >> >> [root@openvas:~]$ systemctl status openvas-manager.service >> openvas-manager.service - LSB: start|stop|status|restart|condrestart OpenVAS >> Manager >> Loaded: loaded (/etc/rc.d/init.d/openvas-manager) >> Active: active (exited) since Sun, 18 Dec 2011 14:26:39 +0100; >> 59min ago >> Process: 3012 ExecStart=/etc/rc.d/init.d/openvas-manager start >> (code=exited, status=6/NOTCONFIGURED) >> CGroup: name=systemd:/system/openvas-manager.service >> _______________________________ >> >> [root@openvas:/var/log/openvas]$ cat >> /etc/systemd/system/greenbone-security-assistant.service >> [Unit] >> Description=Greenbone Security Assistant >> After=network.target openvas-manager.service openvas-scanner.service >> [Service] >> Type=forking >> ExecStart=/usr/sbin/gsad --listen=10.0.0.107 --port=443 >> --ssl-private-key=/etc/openvas/openvas.thelounge.net.pem >> --ssl-certificate=/etc/openvas/openvas.thelounge.net.pem --alisten=127.0.0.1 >> --aport=9393 --mlisten=127.0.0.1 >> --mport=9390 >> Restart=always >> RestartSec=1 >> [Install] >> WantedBy=multi-user.target >> >> >> Am 18.12.2011 19:30, schrieb Brandon Perry: >>> Do you have your certs generated? >>> >>> Do servercert.pem and serverkey.pem exist? >>> >>> On Sun, Dec 18, 2011 at 12:27 PM, Reindl Harald <h.rei...@thelounge.net> >>> wrote: >>>> is this because "openvasmd --rebuild +++ killed by SIGABRT +++" or why >>>> does "openvasad" refuse to start? i had to build the rpm by myself >>>> because Fedora is missing "openvas-administrator" as also >>>> "greenbone-security-assistant" which i built the same way as rpm >>>> and created a systemd-unit without configuration-files >>>> >>>> slowly i become a little bit frustrated about get openVAS >>>> running with a working webinterface :-( >>>> ________________ >>>> >>>> [root@openvas:/var/log/openvas]$ cat >>>> /etc/systemd/system/openvas-administrator.service >>>> [Unit] >>>> Description=OpenVAS Administrator >>>> After=network.target openvas-manager.service openvas-scanner.service >>>> Before=greenbone-security-assistant.service >>>> [Service] >>>> Type=forking >>>> ExecStart=/usr/sbin/openvasad --listen=127.0.0.1 --port=9393 >>>> --users-dir=/var/lib/openvas/users >>>> --scanner-config-file=/etc/openvas/openvassd.conf >>>> --sync-script=/usr/sbin/openvas-nvt-sync >>>> Restart=always >>>> RestartSec=1 >>>> [Install] >>>> WantedBy=multi-user.target >>>> >>>> [root@openvas:/var/log/openvas]$ cat openvasad.log >>>> lib auth:WARNING:2011-12-18 18h56.45 CET:28694: Authentication >>>> configuration could not be loaded. >>>> lib serv:WARNING:2011-12-18 18h56.45 CET:28696: openvas_server_new: >>>> failed to set credentials key file >>>> lib serv:WARNING:2011-12-18 18h56.45 CET:28696: openvas_server_new: >>>> cert file: /var/lib/openvas/CA/servercert.pem >>>> lib serv:WARNING:2011-12-18 18h56.45 CET:28696: openvas_server_new: key >>>> file : >>>> /var/lib/openvas/private/CA/serverkey.pem >>>> ad main:CRITICAL:2011-12-18 18h56.45 CET:28696: main: client server >>>> initialisation failed >>>> >>>> >>>> _______________________________________________ >>>> Openvas-discuss mailing list >>>> Openvas-discuss@wald.intevation.org >>>> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss >>>> >>> >>> >>> >> >> -- >> >> Mit besten Grüßen, Reindl Harald >> the lounge interactive design GmbH >> A-1060 Vienna, Hofmühlgasse 17 >> CTO / software-development / cms-solutions >> p: +43 (1) 595 3999 33, m: +43 (676) 40 221 40 >> icq: 154546673, http://www.thelounge.net/ >> >> http://www.thelounge.net/signature.asc.what.htm >> >> >> _______________________________________________ >> Openvas-discuss mailing list >> Openvas-discuss@wald.intevation.org >> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss >> > > > -- Mit besten Grüßen, Reindl Harald the lounge interactive design GmbH A-1060 Vienna, Hofmühlgasse 17 CTO / software-development / cms-solutions p: +43 (1) 595 3999 33, m: +43 (676) 40 221 40 icq: 154546673, http://www.thelounge.net/ http://www.thelounge.net/signature.asc.what.htm
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
