I have installed the latest version of OpenVAS on CentOS from Atomicorp.
openvas-check-setup reports no critical issues
openvas-check-setup 2.3.2
Test completeness and readiness of OpenVAS-8
(add '--v6' or '--v7' or '--v9'
if you want to check for another OpenVAS version)
Please report us any non-detected problems and
help us to improve this check routine:
http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
Send us the log-file (/tmp/openvas-check-setup.log) to help analyze
the problem.
Use the parameter --server to skip checks for client tools
like GSD and OpenVAS-CLI.
Step 1: Checking OpenVAS Scanner ...
OK: OpenVAS Scanner is present in version 5.0.7.
OK: OpenVAS Scanner CA Certificate is present as
/var/lib/openvas/CA/cacert.pem.
OK: redis-server is present in version v=3.0.7.
OK: scanner (kb_location setting) is configured properly using
the redis-server socket: /tmp/redis.sock
OK: redis-server is running and listening on socket:
/tmp/redis.sock.
OK: redis-server configuration is OK and redis-server is running.
OK: NVT collection in /var/lib/openvas/plugins contains 50525
NVTs.
WARNING: Signature checking of NVTs is not enabled in OpenVAS
Scanner.
SUGGEST: Enable signature checking (see
http://www.openvas.org/trusted-nvts.html).
OK: The NVT cache in /var/cache/openvas contains 50525 files
for 50525 NVTs.
Step 2: Checking OpenVAS Manager ...
OK: OpenVAS Manager is present in version 6.0.9.
OK: OpenVAS Manager client certificate is present as
/var/lib/openvas/CA/clientcert.pem.
OK: OpenVAS Manager database found in
/var/lib/openvas/mgr/tasks.db.
OK: Access rights for the OpenVAS Manager database are correct.
OK: At least one user exists.
OK: sqlite3 found, extended checks of the OpenVAS Manager
installation enabled.
OK: OpenVAS Manager database is at revision 146.
OK: OpenVAS Manager expects database at revision 146.
OK: Database schema is up to date.
OK: OpenVAS Manager database contains information about 50525
NVTs.
OK: OpenVAS SCAP database found in
/var/lib/openvas/scap-data/scap.db.
OK: OpenVAS CERT database found in
/var/lib/openvas/cert-data/cert.db.
OK: xsltproc found.
Step 3: Checking user configuration ...
WARNING: Your password policy is empty.
SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a
password policy.
Step 4: Checking Greenbone Security Assistant (GSA) ...
OK: Greenbone Security Assistant is present in version 6.0.11.
Step 5: Checking OpenVAS CLI ...
OK: OpenVAS CLI version 1.4.4.
Step 6: Checking Greenbone Security Desktop (GSD) ...
SKIP: Skipping check for Greenbone Security Desktop.
Step 7: Checking if OpenVAS services are up and running ...
OK: netstat found, extended checks of the OpenVAS services
enabled.
OK: OpenVAS Scanner is running and listening on all interfaces.
OK: OpenVAS Scanner is listening on port 9391, which is the
default port.
OK: OpenVAS Manager is running and listening on all interfaces.
OK: OpenVAS Manager is listening on port 9390, which is the
default port.
OK: Greenbone Security Assistant is listening on port 9392,
which is the default port.
Step 8: Checking nmap installation ...
WARNING: Your version of nmap is not fully supported: 6.47
SUGGEST: You should install nmap 5.51 if you plan to use the
nmap NSE NVTs.
Step 10: Checking presence of optional tools ...
OK: pdflatex found.
WARNING: PDF generation failed, most likely due to missing
LaTeX packages. The PDF report format will not work.
SUGGEST: Install required LaTeX packages.
OK: ssh-keygen found, LSC credential generation for GNU/Linux
targets is likely to work.
OK: rpm found, LSC credential package generation for RPM based
targets is likely to work.
OK: alien found, LSC credential package generation for DEB
based targets is likely to work.
OK: nsis found, LSC credential package generation for
Microsoft Windows targets is likely to work.
OK: SELinux is disabled.
It seems like your OpenVAS-8 installation is OK.
If you think it is not OK, please report your observation
and help us to improve this check routine:
http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
Please attach the log-file (/tmp/openvas-check-setup.log) to help us
analyze the problem.
But the Web UI (GSAD) will not load (Connection timed out)
Port 80 successfully redirects to port 9392
I used curl to test the connection and I got "curl: (52) Empty reply
from server"
--
Mathew Shires
------------------------------------------------------------------------------
NQC Logo
NQC Ltd
1 George Leigh Street, Manchester, M4 5DL, United Kingdom
Support Centre +44 (0) 845 299 2994
Find out more on youtube.com/nqccom <http://youtube.com/nqccom>
© 2003 - 2016 NQC Ltd. (04854362) All Rights Reserved.
-------------------------------------------------------------------------------
This email and any attachments may be confidential and are intended
solely for the use of the individual to whom it is addressed. If you are
not the intended recipient, please delete this e-mail immediately and
neither take any action based upon its contents, nor copy, use, print,
distribute or disseminate it or any information contained in it.
openvas-check-setup 2.3.2
Mode: desktop
Date: Mon, 05 Dec 2016 12:15:25 +0000
Checking for old OpenVAS Scanner <= 2.0 ...
/bin/openvas-check-setup: line 163: openvasd: command not found
Checking presence of OpenVAS Scanner ...
OpenVAS Scanner 5.0.7
Most new code since 2005: (C) 2015 Greenbone Networks GmbH
Nessus origin: (C) 2004 Renaud Deraison <[email protected]>
License GPLv2: GNU GPL version 2
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Checking OpenVAS Scanner version ...
OK: OpenVAS Scanner is present in version 5.0.7.
plugins_folder = /var/lib/openvas/plugins
cache_folder = /var/cache/openvas
include_folders = /var/lib/openvas/plugins
max_hosts = 30
max_checks = 10
be_nice = no
logfile = /var/log/openvas/openvassd.log
log_whole_attack = no
log_plugins_name_at_load = no
dumpfile = /var/log/openvas/openvassd.dump
cgi_path = /cgi-bin:/scripts
optimize_test = yes
checks_read_timeout = 5
network_scan = no
non_simult_ports = 139, 445
plugins_timeout = 320
scanner_plugins_timeout = SCANNER_NVT_TIMEOUT
safe_checks = yes
auto_enable_dependencies = yes
use_mac_addr = no
nasl_no_signature_check = yes
drop_privileges = no
unscanned_closed = yes
unscanned_closed_udp = yes
vhosts =
vhosts_ip =
report_host_details = yes
cert_file = /var/lib/openvas/CA/servercert.pem
key_file = /var/lib/openvas/private/CA/serverkey.pem
ca_file = /var/lib/openvas/CA/cacert.pem
kb_location = /tmp/redis.sock
timeout_retry = 3
rules = /etc/openvas/openvassd.rules
port_range = default
silent_dependencies = no
save_knowledge_base = no
kb_restore = no
only_test_hosts_whose_kb_we_dont_have = no
only_test_hosts_whose_kb_we_have = no
kb_dont_replay_scanners = no
kb_dont_replay_info_gathering = no
kb_dont_replay_attacks = no
kb_dont_replay_denials = no
kb_max_age = 864000
slice_network_addresses = no
config_file = /etc/openvas/openvassd.conf
Checking OpenVAS Scanner CA cert ...
OK: OpenVAS Scanner CA Certificate is present as
/var/lib/openvas/CA/cacert.pem.
Checking presence of redis ...
OK: redis-server is present in version v=3.0.7.
Checking if redis-server is configured properly to run with openVAS ...
OK: scanner (kb_location setting) is configured properly using the
redis-server socket: /tmp/redis.sock
Checking if redis-server is running ...
OK: redis-server is running and listening on socket: /tmp/redis.sock.
OK: redis-server configuration is OK and redis-server is running.
Checking NVT collection ...
OK: NVT collection in /var/lib/openvas/plugins contains 50525 NVTs.
Checking status of signature checking in OpenVAS Scanner ...
WARNING: Signature checking of NVTs is not enabled in OpenVAS Scanner.
SUGGEST: Enable signature checking (see
http://www.openvas.org/trusted-nvts.html).
OK: The NVT cache in /var/cache/openvas contains 50525 files for 50525
NVTs.
Checking presence of OpenVAS Manager ...
OpenVAS Manager 6.0.9
Manager DB revision 146
Copyright (C) 2010-2015 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: OpenVAS Manager is present in version 6.0.9.
Checking OpenVAS Manager client certificate ...
OK: OpenVAS Manager client certificate is present as
/var/lib/openvas/CA/clientcert.pem.
Checking OpenVAS Manager database ...
OK: OpenVAS Manager database found in /var/lib/openvas/mgr/tasks.db.
Checking access rights of OpenVAS Manager database ...
OK: Access rights for the OpenVAS Manager database are correct.
Checking if users exist ...
OK: At least one user exists.
Checking sqlite3 presence ...
OK: sqlite3 found, extended checks of the OpenVAS Manager installation
enabled.
Checking OpenVAS Manager database revision ...
OK: OpenVAS Manager database is at revision 146.
Checking database revision expected by OpenVAS Manager ...
OK: OpenVAS Manager expects database at revision 146.
OK: Database schema is up to date.
Checking OpenVAS Manager database (NVT data) ...
OK: OpenVAS Manager database contains information about 50525 NVTs.
Checking OpenVAS SCAP database ...
OK: OpenVAS SCAP database found in /var/lib/openvas/scap-data/scap.db.
Checking OpenVAS CERT database ...
OK: OpenVAS CERT database found in /var/lib/openvas/cert-data/cert.db.
Checking xsltproc presence ...
OK: xsltproc found.
Checking status of password policy ...
WARNING: Your password policy is empty.
SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a password
policy.
Checking presence of Greenbone Security Assistant ...
Greenbone Security Assistant 6.0.11
Copyright (C) 2010-2016 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: Greenbone Security Assistant is present in version 6.0.11.
Checking presence of OpenVAS CLI ...
OMP Command Line Interface 1.4.4
Copyright (C) 2010-2016 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
OK: OpenVAS CLI version 1.4.4.
SKIP: Skipping check for Greenbone Security Desktop.
Checking netstat presence ...
OK: netstat found, extended checks of the OpenVAS services enabled.
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
PID/Program name
tcp 0 0 127.0.0.1:6379 0.0.0.0:* LISTEN
958/redis-server 12
tcp 0 0 0.0.0.0:9391 0.0.0.0:* LISTEN
2879/openvassd: Wai
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
2545/gsad
tcp 0 0 0.0.0.0:9392 0.0.0.0:* LISTEN
2544/gsad
tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN
961/dnsmasq
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
962/sshd
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN
1080/master
tcp6 0 0 :::9390 :::* LISTEN
2899/openvasmd
tcp6 0 0 :::53 :::* LISTEN
961/dnsmasq
tcp6 0 0 :::22 :::* LISTEN
962/sshd
tcp6 0 0 ::1:25 :::* LISTEN
1080/master
OK: OpenVAS Scanner is running and listening on all interfaces.
OK: OpenVAS Scanner is listening on port 9391, which is the default
port.
OK: OpenVAS Manager is running and listening on all interfaces.
OK: OpenVAS Manager is listening on port 9390, which is the default
port.
OK: Greenbone Security Assistant is listening on port 9392, which is
the default port.
Checking presence of nmap ...
WARNING: Your version of nmap is not fully supported: 6.47
SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE
NVTs.
Checking presence of pdflatex ...
OK: pdflatex found.
Checking presence of LaTeX packages required for PDF report generation ...
WARNING: PDF generation failed, most likely due to missing LaTeX
packages. The PDF report format will not work.
SUGGEST: Install required LaTeX packages.
This is pdfTeX, Version 3.1415926-2.5-1.40.14 (TeX Live 2013) (format=pdflatex
2016.12.4) 5 DEC 2016 12:15
entering extended mode
restricted \write18 enabled.
%&-line parsing enabled.
**/tmp/openvas-check-setup-tmp.o8AS97mxgQ/test.tex
(/tmp/openvas-check-setup-tmp.o8AS97mxgQ/test.tex
LaTeX2e <2011/06/27>
Babel <v3.8m> and hyphenation patterns for english, dumylang, nohyphenation, lo
aded.
(/usr/share/texlive/texmf-dist/tex/latex/base/article.cls
Document Class: article 2007/10/19 v1.4h Standard LaTeX document class
(/usr/share/texlive/texmf-dist/tex/latex/base/size10.clo
File: size10.clo 2007/10/19 v1.4h Standard LaTeX file (size option)
)
\c@part=\count79
\c@section=\count80
\c@subsection=\count81
\c@subsubsection=\count82
\c@paragraph=\count83
\c@subparagraph=\count84
\c@figure=\count85
\c@table=\count86
\abovecaptionskip=\skip41
\belowcaptionskip=\skip42
\bibindent=\dimen102
) (/usr/share/texlive/texmf-dist/tex/latex/tools/tabularx.sty
Package: tabularx 1999/01/07 v2.07 `tabularx' package (DPC)
(/usr/share/texlive/texmf-dist/tex/latex/tools/array.sty
Package: array 2008/09/09 v2.4c Tabular extension package (FMi)
\col@sep=\dimen103
\extrarowheight=\dimen104
\NC@list=\toks14
\extratabsurround=\skip43
\backup@length=\skip44
)
\TX@col@width=\dimen105
\TX@old@table=\dimen106
\TX@old@col=\dimen107
\TX@target=\dimen108
\TX@delta=\dimen109
\TX@cols=\count87
\TX@ftn=\toks15
) (/usr/share/texlive/texmf-dist/tex/latex/geometry/geometry.sty
Package: geometry 2010/09/12 v5.6 Page Geometry
(/usr/share/texlive/texmf-dist/tex/latex/graphics/keyval.sty
Package: keyval 1999/03/16 v1.13 key=value parser (DPC)
\KV@toks@=\toks16
) (/usr/share/texlive/texmf-dist/tex/generic/oberdiek/ifpdf.sty
Package: ifpdf 2011/01/30 v2.3 Provides the ifpdf switch (HO)
Package ifpdf Info: pdfTeX in PDF mode is detected.
) (/usr/share/texlive/texmf-dist/tex/generic/oberdiek/ifvtex.sty
Package: ifvtex 2010/03/01 v1.5 Detect VTeX and its facilities (HO)
Package ifvtex Info: VTeX not detected.
) (/usr/share/texlive/texmf-dist/tex/generic/ifxetex/ifxetex.sty
Package: ifxetex 2010/09/12 v0.6 Provides ifxetex conditional
)
\Gm@cnth=\count88
\Gm@cntv=\count89
\c@Gm@tempcnt=\count90
\Gm@bindingoffset=\dimen110
\Gm@wd@mp=\dimen111
\Gm@odd@mp=\dimen112
\Gm@even@mp=\dimen113
\Gm@layoutwidth=\dimen114
\Gm@layoutheight=\dimen115
\Gm@layouthoffset=\dimen116
\Gm@layoutvoffset=\dimen117
\Gm@dimlist=\toks17
)
! LaTeX Error: File `comment.sty' not found.
Type X to quit or <RETURN> to proceed,
or enter new name. (Default extension: sty)
Enter file name:
! Emergency stop.
<read *>
l.8 \usepackage
{longtable}^^M
*** (cannot \read from terminal in nonstop modes)
Here is how much of TeX's memory you used:
815 strings out of 495063
11112 string characters out of 3182201
60410 words of memory out of 3000000
4062 multiletter control sequences out of 15000+200000
3640 words of font info for 14 fonts, out of 3000000 for 9000
14 hyphenation exceptions out of 8191
23i,0n,19p,192b,36s stack positions out of 5000i,500n,10000p,200000b,50000s
! ==> Fatal error occurred, no output PDF file produced!
Checking presence of ssh-keygen ...
OK: ssh-keygen found, LSC credential generation for GNU/Linux targets
is likely to work.
Checking presence of rpm ...
OK: rpm found, LSC credential package generation for RPM based targets
is likely to work.
Checking presence of alien ...
OK: alien found, LSC credential package generation for DEB based
targets is likely to work.
Checking presence of nsis ...
OK: nsis found, LSC credential package generation for Microsoft Windows
targets is likely to work.
Checking for SELinux ...
OK: SELinux is disabled._______________________________________________
Openvas-discuss mailing list
[email protected]
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
