Definitely somewhere in the signing/keychain process. Found the debug logging items...
>From the log: md main: DEBUG:2014-02-19 19h10.12 EST:23632: verify_signature: Spawning in /tmp/: gpg --batch --quiet --no-tty --verify /tmp/openvasmd-signature-Si6E8L /tmp/openvasmd-installer-Or28Z0 Which I tried to run as root, and ran into two issues: #gpg --verify /tmp/openvasmd-signature-Si6E8L /tmp/openvasmd-installer-Or28Z0 gpg: Signature made Wed 19 Feb 2014 04:15:53 PM EST using RSA key ID XXXXXX gpg: Can't check signature: No public key #gpg --homedir=/etc/openvas/gnupg --verify /tmp/openvasmd-signature-Si6E8L /tmp/openvasmd-installer-Or28Z0 gpg: Signature made Wed 19 Feb 2014 04:15:53 PM EST using RSA key ID XXXXXX gpg: BAD signature from "openvas-signer" So A) I need to ensure the openvasmd process is using the same keychain as I'm expecting (is that set somewhere? /etc/sysconfig/openvas-manager?) and B) Fix the signature (I feel like there's something wrong with my create_report_import copied in my original email)... In the meantime I'll start looking at those temp files to see if I can glean where I went wrong on the signature... On Wed, Feb 19, 2014 at 6:21 PM, Greg Etling <getl...@stern.nyu.edu> wrote: > Nope. NTP synced, confirmed with the 'date' command. > > > On Wed, Feb 19, 2014 at 5:48 PM, Brandon Perry > <bperry.volat...@gmail.com>wrote: > >> Is the clock on the machine skewed? >> >> Sent from a computer >> >> On Feb 19, 2014, at 4:34 PM, Greg Etling <getl...@stern.nyu.edu> wrote: >> >> No change... >> >> >> #cp 039b4fe2-99ab-11e3-a53b-005056b800a5.asc >> /var/lib/openvas/plugins/report_formats/ >> >> #omp -X '<modify_report_format >> report_format_id="039b4fe2-99ab-11e3-a53b-005056b800a5"><active>1</active></modify_report_format>' >> >> <modify_report_format_response status="200" >> status_text="OK"></modify_report_format_response> >> >> #omp -X '<verify_report_format >> report_format_id="039b4fe2-99ab-11e3-a53b-005056b800a5" />' >> >> <verify_report_format_response status="200" >> status_text="OK"></verify_report_format_response> >> >> >> >> ...yet in the frontend it shows 'Trust (Last Verified): no (Feb 19 2014)' >> >> >> On Wed, Feb 19, 2014 at 6:23 PM, Matthew Mundell < >> matthew.mund...@greenbone.net> wrote: >> >>> > I'm about at the end of my knowledge and am sure I'm missing something >>> > right in front of my face while trying to set up a new report format. >>> > >>> > I have set up keys on our Openvas server (as per >>> > http://www.openvas.org/trusted-nvts.html) created a new report format, >>> > grabbed the create_report_import from SVN and modified as seen below, >>> ran >>> > it and uploaded the results as a new report, activated it with omp and >>> > everything seems fine, except openvas refuses to trust the report... >>> >>> Did you put the .asc file in your var/lib/openvas/plugins/report_formats >>> directory? >>> >>> -- >>> Greenbone Networks GmbH >>> Neuer Graben 17, 49074 Osnabrueck, Germany | AG Osnabrueck, HR B 202460 >>> Executive Directors: Lukas Grunwald, Dr. Jan-Oliver Wagner >>> >> >> >> >> -- >> Greg Etling >> getl...@stern.nyu.edu >> <getl...@stern.nyu.edu>Systems Administrator >> Stern IT Enterprise Operations >> NYU Stern School of Business >> >> _______________________________________________ >> Openvas-discuss mailing list >> Openvas-discuss@wald.intevation.org >> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >> >> > > > -- > Greg Etling > getl...@stern.nyu.edu > <getl...@stern.nyu.edu>Systems Administrator > Stern IT Enterprise Operations > NYU Stern School of Business > -- Greg Etling getl...@stern.nyu.edu <getl...@stern.nyu.edu>Systems Administrator Stern IT Enterprise Operations NYU Stern School of Business
_______________________________________________ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
