Hello all.
Just installed Openvas. I am running on Centos (7). All patches applied.
Brand new install of Openvas. Scanning yields zero output. Selinux is
disabled. I am attaching the output from the script that seems to indicate
that the installation is working, however not much is happening.
This is the output of the scan.
What am I missing?
Bill
Host
Details[https://10.0.2.15:9392/img/help.png]<https://10.0.2.15:9392/help/hosts.html?token=3c46c503-aaaa-40ae-a03e-0ee5893eb328#host_details>[Hosts]<https://10.0.2.15:9392/omp?cmd=get_report&type=assets&levels=&search_phrase=&first_result=1&max_results=100&overrides=0&token=3c46c503-aaaa-40ae-a03e-0ee5893eb328>[Prognostic
Report]<https://10.0.2.15:9392/omp?cmd=get_report&type=prognostic&host=199.189.188.88&pos=1&host_search_phrase=&host_levels=&host_first_result=1&host_max_results=100&result_hosts_only=1&token=3c46c503-aaaa-40ae-a03e-0ee5893eb328>
Report: Aug 4
2016<https://10.0.2.15:9392/omp?cmd=get_report&report_id=9979a895-219b-41ea-b3c8-337eb3c3d356&filter==%22199.189.188.88%22%20notes=1%20overrides=1%20result_hosts_only=1%20levels=hm&token=3c46c503-aaaa-40ae-a03e-0ee5893eb328>
Reports: 1
High
: 0
Medium
: 0
Low
: 0
OS: [No information on Operating System was gathered during scan.]
Open Ports: 0
Open TCP Ports: 0
Open UDP Ports: 0
Apps: 0
Distance:
Host Identification
Identifier Value
Scanned IP x
Hardware: Information not available
Apps: None
______________________________________________________________
This email has been scanned for all viruses by McAfee.
______________________________________________________________
openvas-check-setup 2.3.3
Mode: desktop
Date: Thu, 04 Aug 2016 09:49:04 -0400
Checking for old OpenVAS Scanner <= 2.0 ...
./check-setup-openvas: line 163: openvasd: command not found
Checking presence of OpenVAS Scanner ...
OpenVAS Scanner 5.0.5
Most new code since 2005: (C) 2015 Greenbone Networks GmbH
Nessus origin: (C) 2004 Renaud Deraison <derai...@nessus.org>
License GPLv2: GNU GPL version 2
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Checking OpenVAS Scanner version ...
OK: OpenVAS Scanner is present in version 5.0.5.
plugins_folder = /var/lib/openvas/plugins
cache_folder = /var/cache/openvas
include_folders = /var/lib/openvas/plugins
max_hosts = 30
max_checks = 10
be_nice = no
logfile = /var/log/openvas/openvassd.log
log_whole_attack = no
log_plugins_name_at_load = no
dumpfile = /var/log/openvas/openvassd.dump
cgi_path = /cgi-bin:/scripts
optimize_test = yes
checks_read_timeout = 5
network_scan = no
non_simult_ports = 139, 445
plugins_timeout = 320
safe_checks = yes
auto_enable_dependencies = yes
use_mac_addr = no
nasl_no_signature_check = yes
drop_privileges = no
unscanned_closed = yes
unscanned_closed_udp = yes
vhosts =
vhosts_ip =
report_host_details = yes
cert_file = /var/lib/openvas/CA/servercert.pem
key_file = /var/lib/openvas/private/CA/serverkey.pem
ca_file = /var/lib/openvas/CA/cacert.pem
kb_location = /tmp/redis.sock
rules = /etc/openvas/openvassd.rules
port_range = default
silent_dependencies = no
save_knowledge_base = no
kb_restore = no
only_test_hosts_whose_kb_we_dont_have = no
only_test_hosts_whose_kb_we_have = no
kb_dont_replay_scanners = no
kb_dont_replay_info_gathering = no
kb_dont_replay_attacks = no
kb_dont_replay_denials = no
kb_max_age = 864000
slice_network_addresses = no
config_file = /etc/openvas/openvassd.conf
Checking OpenVAS Scanner CA cert ...
OK: OpenVAS Scanner CA Certificate is present as /var/lib/openvas/CA/cacert.pem.
Checking presence of redis ...
OK: redis-server is present in version v=3.0.7.
Checking if redis-server is configured properly to run with openVAS ...
OK: scanner (kb_location setting) is configured properly using the redis-server socket: /tmp/redis.sock
Checking if redis-server is running ...
OK: redis-server is running and listening on socket: /tmp/redis.sock.
OK: redis-server configuration is OK and redis-server is running.
Checking NVT collection ...
OK: NVT collection in /var/lib/openvas/plugins contains 48413 NVTs.
Checking status of signature checking in OpenVAS Scanner ...
WARNING: Signature checking of NVTs is not enabled in OpenVAS Scanner.
SUGGEST: Enable signature checking (see http://www.openvas.org/trusted-nvts.html).
OK: The NVT cache in /var/cache/openvas contains 48413 files for 48413 NVTs.
Checking presence of OpenVAS Manager ...
OpenVAS Manager 6.0.8
Manager DB revision 146
Copyright (C) 2010-2015 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: OpenVAS Manager is present in version 6.0.8.
Checking OpenVAS Manager client certificate ...
OK: OpenVAS Manager client certificate is present as /var/lib/openvas/CA/clientcert.pem.
Checking OpenVAS Manager database ...
OK: OpenVAS Manager database found in /var/lib/openvas/mgr/tasks.db.
Checking access rights of OpenVAS Manager database ...
OK: Access rights for the OpenVAS Manager database are correct.
Checking sqlite3 presence ...
OK: sqlite3 found, extended checks of the OpenVAS Manager installation enabled.
Checking OpenVAS Manager database revision ...
OK: OpenVAS Manager database is at revision 146.
Checking database revision expected by OpenVAS Manager ...
OK: OpenVAS Manager expects database at revision 146.
OK: Database schema is up to date.
Checking OpenVAS Manager database (NVT data) ...
OK: OpenVAS Manager database contains information about 48413 NVTs.
Checking if users exist ...
OK: At least one user exists.
Checking OpenVAS SCAP database ...
OK: OpenVAS SCAP database found in /var/lib/openvas/scap-data/scap.db.
Checking OpenVAS CERT database ...
OK: OpenVAS CERT database found in /var/lib/openvas/cert-data/cert.db.
Checking xsltproc presence ...
OK: xsltproc found.
Checking status of password policy ...
WARNING: Your password policy is empty.
SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a password policy.
Checking presence of Greenbone Security Assistant ...
Greenbone Security Assistant 6.0.10
Copyright (C) 2010-2016 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: Greenbone Security Assistant is present in version 6.0.10.
Checking presence of OpenVAS CLI ...
OMP Command Line Interface 1.4.3
Copyright (C) 2010-2015 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: OpenVAS CLI version 1.4.3.
SKIP: Skipping check for Greenbone Security Desktop.
Checking netstat presence ...
OK: netstat found, extended checks of the OpenVAS services enabled.
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:6379 0.0.0.0:* LISTEN 1273/redis-server 1
tcp 0 0 0.0.0.0:9391 0.0.0.0:* LISTEN 1288/openvassd: Wai
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 1443/gsad
tcp 0 0 0.0.0.0:9392 0.0.0.0:* LISTEN 1442/gsad
tcp 0 0 192.168.122.1:53 0.0.0.0:* LISTEN 2215/dnsmasq
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1275/sshd
tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 1271/cupsd
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 2042/master
tcp6 0 0 :::9390 :::* LISTEN 1310/openvasmd
tcp6 0 0 :::22 :::* LISTEN 1275/sshd
tcp6 0 0 ::1:631 :::* LISTEN 1271/cupsd
tcp6 0 0 ::1:25 :::* LISTEN 2042/master
OK: OpenVAS Scanner is running and listening on all interfaces.
OK: OpenVAS Scanner is listening on port 9391, which is the default port.
OK: OpenVAS Manager is running and listening on all interfaces.
OK: OpenVAS Manager is listening on port 9390, which is the default port.
OK: Greenbone Security Assistant is listening on port 9392, which is the default port.
Checking presence of nmap ...
WARNING: Your version of nmap is not fully supported: 6.47
SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE NVTs.
Checking presence of pdflatex ...
OK: pdflatex found.
Checking presence of LaTeX packages required for PDF report generation ...
WARNING: PDF generation failed, most likely due to missing LaTeX packages. The PDF report format will not work.
SUGGEST: Install required LaTeX packages.
Checking presence of ssh-keygen ...
OK: ssh-keygen found, LSC credential generation for GNU/Linux targets is likely to work.
Checking presence of rpm ...
OK: rpm found, LSC credential package generation for RPM based targets is likely to work.
Checking presence of alien ...
WARNING: Could not find alien binary, LSC credential package generation for DEB based targets will not work.
SUGGEST: Install alien.
Checking presence of nsis ...
OK: nsis found, LSC credential package generation for Microsoft Windows targets is likely to work.
Checking for SELinux ...
OK: SELinux is disabled.
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss