Re: [Openvas-discuss] Poodle - SSL version check
Hi, sorry for the last HTML mail. Don't know why this happened with a setting of always sending out plain text mails. :-/ So if I understand I must use nmap NVT to check if port 443 is open and use the Check SSL Weak Ciphers and Supported Ciphers Yes this worked here as expected. But i have also set the List SSL Supported Ciphers in the Settings Family to yes after i had a short look at the Check SSL Weak Ciphers and Supported Ciphers .nasl script. As far as i can see this is needed if the service is supporting SSLv3 but no weak cipher. ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Openvas-discuss] demo fails on https website
Dear reader, I have successfully downloaded the OpenVAS-7 DEMO Virtual Appliance and started the VM in my Virtualbox (v4.3) on my Debian Testing workstation. I have logged on into the OpenVAS webinterface and started a scan to check one of my machines. So far, so good! Unfortunately, the scan runs to 1% and then gets to status 'DONE' without delivering a report or severity. My machine is running an https only website. When I scan a http-only website it works fine. Logs in /usr/local/var/log/openvas show: gsad.log Received Signal: Terminated. Exiting. MHD: Error: received handshake message out of context MHD: Failed to receive data: A TLS fatal alert has been received. openvasmd.log Authentication configuration not found. Failed to gnutls_bye: Error in the push function. openvassd.dump No errors, only some informational info about OpenPGP engine version and GnuPG homedire and sysconf homedir. openvassd.messages Start new scan (..) The remote host (IP) is dead Communication closed by client Client not present The HTTPS website on my machine accepts TLS1.0, 1.1 and 1.2. SSL2.0 and 3.0 are disabled. Any help is greatly appreciated, thanks in advanced! Martin ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] demo fails on https website
Dear writer, Did you update the scan settings as the default setting to detect if a machine is online is via ping On ٢٢ أكتوبر، ٢٠١٤ ٢:٤٨:٣٦ م GMT+03:00, Martin Herrman mar...@herrman.nl wrote: Dear reader, I have successfully downloaded the OpenVAS-7 DEMO Virtual Appliance and started the VM in my Virtualbox (v4.3) on my Debian Testing workstation. I have logged on into the OpenVAS webinterface and started a scan to check one of my machines. So far, so good! Unfortunately, the scan runs to 1% and then gets to status 'DONE' without delivering a report or severity. My machine is running an https only website. When I scan a http-only website it works fine. Logs in /usr/local/var/log/openvas show: gsad.log Received Signal: Terminated. Exiting. MHD: Error: received handshake message out of context MHD: Failed to receive data: A TLS fatal alert has been received. openvasmd.log Authentication configuration not found. Failed to gnutls_bye: Error in the push function. openvassd.dump No errors, only some informational info about OpenPGP engine version and GnuPG homedire and sysconf homedir. openvassd.messages Start new scan (..) The remote host (IP) is dead Communication closed by client Client not present The HTTPS website on my machine accepts TLS1.0, 1.1 and 1.2. SSL2.0 and 3.0 are disabled. Any help is greatly appreciated, thanks in advanced! Martin ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss -- Sent from my Android device with K-9 Mail. Please excuse my brevity.___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Openvas-discuss] No Scan results in OpenVAS-7
Hi there, I did setup OpenVAS-7 including Trusted NVTs according to the OpenVAS guidance like I did for OpenVAS-6 a couple of times already without issues. Unfortunately I do not see any results in any report, knowing there are some. The logfile openvas.dump shows (openvassd:15412): base gpgme-WARNING **: Setting GnuPG homedir failed: No such file or directory /var/lib/openvas/plugins/radius_detect.nasl: bad or missing signature. Will not execute this script for all scripts. As soon as I disable Trusted NVTs in /etc/openvas/openvassd.conf, I see the expected results in the reports. Has anything changed in these regards in OpenVAS-7? Thanks, Helmut ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] demo fails on https website
Dear Ali, thanks for your suggestion! No, I didn't do that. I tried to find this setting via 'Confiuration' - 'Scan settings', but couldn't find it. Can you explain where to change this, or point me to the available documentation? Thanks in advance! Martin 2014-10-22 14:02 GMT+02:00 Ali Khalfan ali.khal...@gmail.com: Dear writer, Did you update the scan settings as the default setting to detect if a machine is online is via ping ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] demo fails on https website
Hi, change this, or point me to the available documentation? see this mailing list post for a pointer: http://lists.wald.intevation.org/pipermail/openvas-discuss/2014-October/006953.html ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] demo fails on https website
2014-10-22 17:52 GMT+02:00 Chris fisch@gmx.de: Hi, change this, or point me to the available documentation? see this mailing list post for a pointer: http://lists.wald.intevation.org/pipermail/openvas-discuss/2014-October/006953.html Thanks, found this setting and I'm now able to run a test! ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss