I think it works. Is the host really vulnerable? Eero
la 19. syyskuuta 2015 3.05 Howard Sheen <[email protected]> kirjoitti: > Hi Eero > > Please find the trace below > > # strace -f -e connect openvas-nasl -d -X -t xxx.xxx.xxx.xxx > /usr/local/var/lib/openvas/plugins/2014/gb_openssl_ccs_67899.nasl -i > /usr/local/var/lib/openvas/plugins/ > connect(5, {sa_family=AF_LOCAL, sun_path="/run/user/1000/keyring/pkcs11"}, > 110) = 0 > connect(6, {sa_family=AF_LOCAL, sun_path="/var/run/nscd/socket"}, 110) = 0 > connect(7, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("xxx.xxx.xxx.xxx")}, 16) = -1 EINPROGRESS (Operation now > in progress) > connect(7, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("xxx.xxx.xxx.xxx")}, 16) = -1 EINPROGRESS (Operation now > in progress) > connect(7, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("xxx.xxx.xxx.xxx")}, 16) = -1 EINPROGRESS (Operation now > in progress) > connect(7, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("xxx.xxx.xxx.xxx")}, 16) = -1 EINPROGRESS (Operation now > in progress) > set key HostDetails -> EXIT_CODE > set key HostDetails/NVT/(null)/EXIT_CODE -> EXIT_NOTVULN > > while openssl looks good as below > # strace -f -e connect openssl s_client -connect xxx.xxx.xxx.xxx:443 > connect(3, {sa_family=AF_LOCAL, sun_path="/var/run/nscd/socket"}, 110) = 0 > connect(3, {sa_family=AF_LOCAL, sun_path="/var/run/nscd/socket"}, 110) = 0 > connect(3, {sa_family=AF_INET, sin_port=htons(443), > sin_addr=inet_addr("xxx.xxx.xxx.xxx")}, 16) = 0 > CONNECTED(00000003) > ... > > Any other suggestions? > It seems all the 32 bit Debian/Ubuntu systems I have has the same issue > with Openvas 7/8. > > Thanks, > Howard > > On Tue, Sep 15, 2015 at 12:22 AM Eero Volotinen <[email protected]> > wrote: > >> I also tried this and looks like it works fine. >> >> >> >> -- >> Eero >> >> 2015-09-15 10:14 GMT+03:00 Michael Meyer <[email protected]>: >> >>> *** Howard Sheen wrote: >>> >>> > Is there anything I can try in addition the fix you suggested? >>> >>> run openvas-nasl with "-T -". >>> >>> Micha >>> >>> -- >>> Michael Meyer OpenPGP Key: 0xAF069E9152A6EFA6 >>> http://www.greenbone.net/ >>> Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG >>> Osnabrück, HR B 202460 >>> Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner >>> _______________________________________________ >>> Openvas-discuss mailing list >>> [email protected] >>> >>> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss >>> >> >> _______________________________________________ >> Openvas-discuss mailing list >> [email protected] >> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > >
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
