2015-05-12 23:07 GMT+03:00 Brian Chabot <[email protected]>:
> Right. I got things working almost 100%. PDF export seems to not > work, but HTML does and that's fine for the moment. > follow this instructions how to get pdf's working: http://miotramemoria.blogspot.fi/2014/08/centos-7-openvas-pdf-reports.html -- Eero > > For those it may benefit, here's my instructions list for installing > OpenVAS on a fresh CentOS 7 server: > > Install CentOS7, minimal from ISO. Set passwords. Add DNS and DHCP > entries as necessary. Make sure networking is active and working. > > # yum install -y wget mlocate net-tools > # rpm -Uvh > http://download.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-5.noarch.rpm > # wget -q -O - http://www.atomicorp.com/installers/atomic |sh > # yum upgrade -y > # echo "unixsocket /tmp/redis.sock" >> /etc/redis.conf > # echo "port 0" >> /etc/redis.conf > # echo "unixsocketperm 700" >> /etc/redis.conf > # echo "timeout 0" >> /etc/redis.conf > # echo "databases 128" >> /etc/redis.conf > # echo "maxclients 512" >> /etc/redis.conf > # systemctl stop firewalld > # systemctl disable firewalld > # yum install redis doxygen-latex htop > # systemctl enable redis > # systemctl restart redis > # setenforce 0 > # sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config > # init 6 > (This is to ensure the services are all starting correctly and SELinus > is permanently disabled.) > # yum install openvas -y > # openvas-setup > > Allow access from all IPs? YES > Admin user: admin > Admin pass: (current security scanner admin pass) > > # curl -k > https://svn.wald.intevation.org/svn/openvas/trunk/tools/openvas-check-setup > |sh > > Correct any errors. Note and possibly correct any warnings. > > # updatedb > > NOTE: in /etc/redis.conf the databases and maxclients lines will need > to be adjusted for the most efficient usage: > > databases = 1 + (#of parallel tasks) * (#of parallel hosts) > > maxclients = 1 + (#of parallel tasks) * (#of parallel hosts) * (#of > concurrent NVTs) > > Adjust these and of course your parallel tasks, hosts, and NVTs > according to your amount of processing power and RAM (and to a lesser > extent, network bandwidth). > > That's it. If anyone notices I'm missing anything here, please let me > know. Also, if the person maintaining the documentation would be so > kind as to update the web site, that would likely be helpful to other > folks trying to figure this out. > > On Tue, May 12, 2015 at 3:55 PM, Eero Volotinen <[email protected]> > wrote: > > Please stop trolling and just disable it. > > > > Eero > > > > 12.5.2015 4.12 ip. "Brandon Perry" <[email protected]> > kirjoitti: > >> > >> Right, but *why*? I never disable SELinux and have never had an issue. > >> > >> Also, disabling it completely is likely not correct. If there is a > >> specific process that SELinux doesn't play nice with, you can lower > SELinux > >> restrictiveness on a per-process level. > >> > >> What process in OpenVAS does SELinux supposedly not play well with and > >> what are the side-effects/symptoms? > >> > >> On Tue, May 12, 2015 at 8:07 AM, Reindl Harald <[email protected]> > >> wrote: > >>> > >>> > >>> Am 12.05.2015 um 15:05 schrieb Brandon Perry: > >>>> > >>>> Why should he do that? That seems a bit overkill? > >>> > >>> > >>> because OpenVAS should *always* run on a dedicated host / VM and > deisable > >>> SELinux was mentioned a magnitude of times by the OpenVAS developers > on that > >>> list? > >>> > >>>> On Tue, May 12, 2015 at 2:02 AM, Eero Volotinen < > [email protected] > >>>> <mailto:[email protected]>> wrote: > >>>> > >>>> you should also disable selinux permanently > >>> > >>> > >>> > >>> _______________________________________________ > >>> Openvas-discuss mailing list > >>> [email protected] > >>> > >>> > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > >> > >> > >> > >> > >> -- > >> http://volatile-minds.blogspot.com -- blog > >> http://www.volatileminds.net -- website > >> > >> _______________________________________________ > >> Openvas-discuss mailing list > >> [email protected] > >> > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > > > > > > _______________________________________________ > > Openvas-discuss mailing list > > [email protected] > > > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > > > > -- > __________________________________ > > Brian Chabot | Infrastructure Systems Administrator > > millennial media > > Mobile: +1 603.728.1469 > Email: [email protected] > Web: www.millennialmedia.com > _______________________________________________ > Openvas-discuss mailing list > [email protected] > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
