Hi Paul, it is just an external scan in same subnet. Those appliances have embedded OS (linux kernel) but no firewall. Thanks. -Artie
From: Openvas-discuss [mailto:[email protected]] On Behalf Of Paul J Sent: Wednesday, September 09, 2015 1:31 AM To: [email protected] Subject: [Newsletter] Re: [Openvas-discuss] OpenVAS 7 on VM is working on HTTP/HTTPS/Telnet/SSH ports? Are you trying to do a credentialed scan or simply an external scan? Do these appliances have an OS and firewall? From: Openvas-discuss [mailto:[email protected]] On Behalf Of Artie Leu Sent: Tuesday, September 08, 2015 6:10 PM To: [email protected]<mailto:[email protected]> Subject: [Openvas-discuss] OpenVAS 7 on VM is working on HTTP/HTTPS/Telnet/SSH ports? Hello experts, Please help... I am a beginner of OpenVAS. I like OpenVAS design and its architecture very much, but I am stuck by my trial experience at this point. Recently I installed OpenVAS 7 on a CentOS 6.6 VM and scanned some appliance products of my company in same subnet that have HTTP/HTTPS/SSH/Telnet/Ping/SNMP services open on the mgmt. IP. Although scan progress looked normal till done status, somehow scan results are always empty with various targets/port lists, and scan config. The OS is not even detected. Using task wizard didn't help. Meanwhile I used other 3rd party scan tools (e,g Qualys) and found some vulnerabilities detected and reported, but I don't want to give up OpenVAS. I ran openvas-check-setup -v7 without any errors before I used OpenVAS. I wonder if I missed any configurations that are critical to the scan engines. Can someone hint me where to start diagnose to ensure the scan is properly configured to function? Thanks in advance. Artie ________________________________ *** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, opinions, conclusions or commitments expressed in this message are those of the individual sender and do not necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a writing manually signed by Fortinet's General Counsel can be a binding commitment of Fortinet to Fortinet's customers or partners. Thank you. *** ________________________________ *** Please note that this message and any attachments may contain confidential and proprietary material and information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, opinions, conclusions or commitments expressed in this message are those of the individual sender and do not necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a writing manually signed by Fortinet's General Counsel can be a binding commitment of Fortinet to Fortinet's customers or partners. Thank you. ***
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
