it seems that I was still running the old gnutls , the newwer one (3.1.2) seems to successfully perform the handshake
I got a long way to go though -------- Original Message -------- Subject: Re: [Openvas-discuss] Installing OpenVAS on OpenSUSE 11.1 From: Ali Khalfan <[email protected]> To: [email protected] Date: Thu Oct 04 2012 13:15:31 GMT+0300 (AST) > The new version didn't work either, here's the packet capture > > > > -------- Original Message -------- > Subject: Re: [Openvas-discuss] Installing OpenVAS on OpenSUSE 11.1 > From: Ali Khalfan <[email protected]> > To: Aitzol Egia Amezua <[email protected]> > CC: [email protected] > Date: Thu Oct 04 2012 12:21:38 GMT+0300 (AST) > >> This is what I feared ... there seems to be a problem with the openvas >> library in setting a handshake with the scanner using gnutls , I just >> posted something about this >> >> Can't seem to get anyone to help me out either her or on the gnutls >> list. I''ll be trying the latest gnutls version soon and I'll see if >> that works out >> >> بتاريخ 2012 10 4 12:11، كتبها "Aitzol Egia Amezua" >> <[email protected] <mailto:[email protected]>>: >> >> Thanks Christian and Ali. I have tried to run again openvasmd >> --rebuild --verbose after checking that: >> >> * openvas-scanner is started and listening on port 9391 >> * clientcert.pem exists in /var/lib/openvas/CA/ >> >> This is what openvasmd.log shows: >> >> md main: INFO:2012-10-04 09h02.19 utc:4898: OpenVAS Manager >> md main: INFO:2012-10-04 09h02.19 utc:4898: Set to >> connect to address 127.0.0.1 port 9391 >> md main: INFO:2012-10-04 09h02.19 utc:4898: Updating NVT >> cache. >> lib serv:WARNING:2012-10-04 09h02.19 utc:4898: >> openvas_server_connect: failed to shake hands with server: The >> TLS connection was non-properly terminated. >> lib serv:WARNING:2012-10-04 09h02.19 utc:4898: Failed to >> gnutls_bye: GnuTLS internal error. >> >> I have read several posts in this mailing list with similar >> problems, but I have not been able to find any solution to the >> problem. Could it the version of GnuTLS installed? >> >> Thanks, >> >> osteguna, 2012.eko urriak 4 6:43:05n, Ali Khalfank idatzia: >>> >>> Aitzol, >>> >>> Do you have an openvasmd.log file? Does it report any errors ? >>> >>> >>> >>> Christian Kuersteiner wrote: >>>> >>>> Aitzol, >>>> >>>> On 10/03/2012 06:24 PM, Aitzol Egia Amezua wrote: >>>>> >>>>> I follow this procedure to solve the problem: >>>>> >>>>> 1. Run openvas-nvt-sync --wget (I get a timeout error with rsync but >>>>> wget works fine). >>>>> 2. Run openvasmd --rebuild >>>>> >>>> >>>> >>>> Is your openvas scanner (openvassd) running when you run "openvasmd >>>> --rebuild" (since openvasmd will communicate will openvassd in >>>> this stage)? >>>> Recheck if you have the appropriate client cert for user "om" in >>>> place. >>>> >>>> Best, >>>> >>>> Christian >>>> >>>> >>>> _______________________________________________ >>>> Openvas-discuss mailing list >>>> [email protected] >>>> <mailto:[email protected]> >>>> >>>> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >>> >>> _______________________________________________ >>> Openvas-discuss mailing list >>> [email protected] >>> <mailto:[email protected]> >>> >>> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >> >> >> >> -- >> Aitzol Egia Amezua >> SOLID ROCK IT >> Zure informatika saila >> Tu departamento de informática >> http://www.solid-rock-it.com >> E-mail: [email protected] >> <mailto:[email protected]> >> Mugikorra/Móvil: +34 627 01 89 45 <tel:%2B34%20627%2001%2089%2045> >> Telefonoa/Teléfono: +34 945 10 18 04 <tel:%2B34%20945%2010%2018%2004> >> Skype: solidrockit.egia.aitzol >> >> >> _______________________________________________ >> Openvas-discuss mailing list >> [email protected] >> <mailto:[email protected]> >> http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >> _______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
