Hi all, I'm trying to configure the Nessus conformity scan on registration.
I have installed Nessus on the same box and PacketFence and created a user account and login for packetfence In my pf.conf:- [scan] engine=nessus host=127.0.0.1 nessus_clientfile=remotescan.nessus nessus_clientpolicy=RemoteScan pass=m00nbas3 registration=enabled #registration=disabled user=packetfence and violations.conf is left as is. When I go through registration, I see a screen informing me my system will be scanned, and then that it is being scanned - but it just sticks at that screen. In packetfence.log I get:- Jul 18 11:44:57 redir.cgi(0) INFO: captive portal redirect on violation vid: 1200001, redirect url: /remediation.php?template=system_scan (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2d$ Jul 18 11:45:02 release.pm(0) INFO: scanning 192.168.50.149 by calling /usr/local/pf/bin/pfcmd schedule now 192.168.50.149 1>/dev/null 2>&1 (pf::web::release::handler) Jul 18 11:45:02 release.pm(0) INFO: violation for mac 00:18:8b:ce:22:db vid 1200001 modified (pf::violation::violation_modify) Jul 18 11:45:02 pfcmd(14754) INFO: New ID generated: 13426083027622db (pf::util::generate_id) Jul 18 11:45:02 pfcmd(14754) INFO: Instantiate a new vulnerability scanning engine object of type pf::scan::nessus. (pf::scan::instantiate_scan_engine) Jul 18 11:45:02 pfcmd(14754) INFO: executing HOME=/usr/local/pf/conf/nessus/ /opt/nessus/bin/nessus -q -V -x --dot-nessus /usr/local/pf/conf/nessus/remotescan.nessus --policy-name RemoteScan 127.0.0.1$ Jul 18 11:45:02 pfcmd(14754) WARN: Problem trying to run command: HOME=/usr/local/pf/conf/nessus/ /opt/nessus/bin/nessus -q -V -x --dot-nessus /usr/local/pf/conf/nessus/remotescan.nessus --policy-name$ Jul 18 11:45:02 pfcmd(14754) WARN: nessus scan failed, it returned: (pf::scan::nessus::startScan) Jul 18 11:45:02 pfcmd(14754) WARN: unable to open /usr/local/pf/html/admin/scan/results/dump_13426083027622db.nbe for reading; Nessus scan might have failed (pf::scan::nessus::startScan) Jul 18 11:45:59 redir.cgi(0) INFO: 00:18:8b:ce:22:db being redirected (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2dportal_redir_2ecgi::handler) Jul 18 11:45:59 redir.cgi(0) INFO: Updating node 00:18:8b:ce:22:db user_agent with useragent: 'Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.3$ Jul 18 11:45:59 redir.cgi(0) INFO: Static User-Agent lookup data initialized (pf::useragent::_init) Jul 18 11:45:59 redir.cgi(0) INFO: captive portal redirect to the scan in progress page (ModPerl::ROOT::ModPerl::PerlRun::usr_local_pf_html_captive_2dportal_redir_2ecgi::handler) Anybody else using this feature? Is there some other configuration that needs to be done to get this to work? Cheers, Mark Nuffield College is a Registered Charity No. 1137506. Registered Office: Nuffield College, New Road, Oxford, OX1 1NF ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
