[Openvas-discuss] In a case of the block, skip scanning.

[nas]

Dears,

Could U please advise me, how I can skip scanning the host if it blocked 
my IP during the scan?

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] openvas 8

[Reindl Harald]

Am 10.11.2016 um 19:37 schrieb kalin m:

i'd be really appreciative of a direction here. i've been trying this
for a week and my deadline is almost here. if anybody has a winning
combination of openvas 8 on any unix like os within vmware fusion 8.5
please let me know...


[root@openvas:~]$ rpm -qa | grep openvas
openvas-scanner-5.0.6-1.fc24.x86_64
openvas-manager-6.0.9-1.fc24.x86_64
openvas-gsa-6.0.11-3.fc24.x86_64
openvas-cli-1.4.4-1.fc24.x86_64
openvas-libraries-8.0.8-2.fc24.x86_64

running on Fedora 24 x86_64 for many months with just the Fedora 
packages on ESXi 5.5 which should make no differnce to VMware Fusion / 
Workstation at all

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] (SOLVED sigh...) Credential Authentication Failing during scan

[fschnittke]

As turns out, it was a firewall issue on the target box. Although I
could SSH to the target from a terminal commandline, after reviewing the
firewall rules I can see why OpenVAS could not. In our default iptables
config we specify a hit count (which is not be a problem for manual
logins), and OpenVAS likely hammered the port causing SSHD on the target
to quit responding.

Thanks again,


Ted...

##

Thanks
for Christians earlier reply and request for more information. 

In
regards to the issue I'm having where OpenVAS does not appear to SSH
into a target machine using the credentials created. I followed previous
advice and added ssh debugging on the target box, log_whole_attack etc,
and gathered more information. A few interesting notes:

1. Upon
openvas-start fhe following is added to openvasmd.log: "lib auth:
INFO:2016-11-10 15h09.37 utc:2383: Authentication configuration not
found"
2. SSH Authentication to the target failed during the scan
3. SSH
debugging as well as /var/log/secure on the target does not even show
that there was an attempt to log in from the OpenVAS Workstation.

Below
is some additional information. Any help with this would be
appreciated...

A P P L I C A T I O N S E R V E R ( T A R G E T
):
Centos 6.8
Allows keys and or password authentication SSH Debugging
enabled 

O P E N V A S W O R K S T A T I O N :
Kali Rolling
OpenVAS 8


O P E N V A S C O N F I G
(/etc/openvas/openvassd.conf):
kb_location=/var/lib/redis/redis.sock
max_checks=15
log_whole_attack=yes


T A R G E T D E T A I L S :
Name: TEST2
Comment: My test box..
Hosts:
10.10.1.130
Exclude Hosts: 
Reverse Lookup Only: No
Reverse Lookup
Unify: No
Maximum number of hosts: 1
Port List: OpenVAS Default
Alive
Test: Scan Config Default
Credentials for authenticated checks:
SSH:
test2_root on port 22
SMB: 
ESXi: 
N O T E : 
test2_root is a credential
created using a username/password combination that does work when I
use
those credentials from a command line 

S C A N D E T A I L S :
Name:
TEST2
Comment: 
Target: TEST2
Alerts: 
Schedule: (Next due: over)
Add to
Assets: yes
Alterable Task: no
Auto Delete Reports: Do not automatically
delete reports
Scanner: OpenVAS Default (Type: OpenVAS Scanner)
Scan
Config: Full and fast
Slave:
Order for target hosts: Sequential
Network
Source Interface:
Maximum concurrently executed NVTs per host:
15
Maximum concurrently scanned hosts: 10
Status: 
New
Reports: 0
(Finished: 0)
Results: 0
Notes: 0
Overrides: 0


openvassd.messages:
[Thu Nov 10 15:11:04 2016][2390] openvassd 5.0.7
started
[Thu Nov 10 15:26:52 2016][2938] Starts a new scan. Target(s) :
10.10.1.130, with max_hosts = 10 and max_checks = 15
[Thu Nov 10
15:26:52 2016][2938] exclude_hosts: Skipped 0 host(s).
[Thu Nov 10
15:26:52 2016][2938] Testing test2 (10.10.1.130) [2957]
[Thu Nov 10
15:29:49 2016][2957] Finished testing 10.10.1.130. Time : 177.62
secs
[Thu Nov 10 15:29:49 2016][2938] Test complete
[Thu Nov 10 15:29:49
2016][2938] Total time to scan all hosts : 184 seconds


openvasmd.log
lib auth: INFO:2016-11-10 15h09.37 utc:2383:
Authentication configuration not found.
event task:MESSAGE:2016-11-10
15h26.42 UTC:2937: Status of task TEST2
(10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Requested
event
task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Task TEST2
(10bb59f1-7506-427f-82c4-0d2c10d5b42f) has been requested to start by
admin
event task:MESSAGE:2016-11-10 15h26.46 UTC:2939: Status of task
TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to
Running
event task:MESSAGE:2016-11-10 15h29.54 UTC:2939: Status of task
TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Done 

 ___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] openvas 8

[kalin m]

hi all...

i'd be really appreciative of a direction here. i've been trying this 
for a week and my deadline is almost here. if anybody has a winning 
combination of openvas 8 on any unix like os within vmware fusion 8.5 
please let me know...


thanks...


On 11/10/16 12:10 PM, kalin m wrote:





On 11/10/16 11:06 AM, Reindl Harald wrote:



Am 10.11.2016 um 16:51 schrieb kalin m:

i have been trying to use openvas 8 for a week now. installed on 3
different linux distributions over vmware fusion and every time i run it
the scan stalls and the os becomes unresponsive after about 2 min - it
shows 1% completed - into the scan and there is no indication why -
nothing in the logs. i initially thought that it has to do with some
networking issues related to the vmware although openvas 6 on a centos
was running just fine in it. i upgraded the vmware. and then tried
running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install
never really worked - not really a huge fan of that distro either. but
the rest all got to the point i was able to create targets and tasks and
start a scan. but they all die after a couple of minutes crashing the os


how much memory do your guests have assigend?
anything below 3 GB won't work at all


yea...  i know. currently at 5...



___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss


___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] openvas 8

[kalin m]

On 11/10/16 11:06 AM, Reindl Harald wrote:



Am 10.11.2016 um 16:51 schrieb kalin m:

i have been trying to use openvas 8 for a week now. installed on 3
different linux distributions over vmware fusion and every time i run it
the scan stalls and the os becomes unresponsive after about 2 min - it
shows 1% completed - into the scan and there is no indication why -
nothing in the logs. i initially thought that it has to do with some
networking issues related to the vmware although openvas 6 on a centos
was running just fine in it. i upgraded the vmware. and then tried
running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install
never really worked - not really a huge fan of that distro either. but
the rest all got to the point i was able to create targets and tasks and
start a scan. but they all die after a couple of minutes crashing the os


how much memory do your guests have assigend?
anything below 3 GB won't work at all


yea...  i know. currently at 5...



___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Credential Authentication Failing during scan

[fschnittke]

Thanks for Christians earlier reply and request for more information.


In regards to the issue I'm having where OpenVAS does not appear to
SSH into a target machine using the credentials created. I followed
previous advice and added ssh debugging on the target box,
log_whole_attack etc, and gathered more information. A few interesting
notes:

1. Upon openvas-start fhe following is added to openvasmd.log:
"lib auth: INFO:2016-11-10 15h09.37 utc:2383: Authentication
configuration not found"
2. SSH Authentication to the target failed
during the scan
3. SSH debugging as well as /var/log/secure on the
target does not even show that there was an attempt to log in from the
OpenVAS Workstation.

Below is some additional information. Any help
with this would be appreciated...

A P P L I C A T I O N S E R V E R ( T
A R G E T ):
 Centos 6.8
 Allows keys and or password authentication SSH
Debugging enabled 

O P E N V A S W O R K S T A T I O N :
 Kali Rolling

OpenVAS 8 

O P E N V A S C O N F I G
(/etc/openvas/openvassd.conf):
kb_location=/var/lib/redis/redis.sock
max_checks=15
log_whole_attack=yes


T A R G E T D E T A I L S :
Name: TEST2
Comment: My test box..
Hosts:
10.10.1.130
Exclude Hosts: 
Reverse Lookup Only: No
Reverse Lookup
Unify: No
Maximum number of hosts: 1
Port List: OpenVAS Default
Alive
Test: Scan Config Default
Credentials for authenticated checks:
SSH:
test2_root on port 22
SMB: 
ESXi: 
N O T E : 
test2_root is a credential
created using a username/password combination that does work when I
use
those credentials from a command line 

S C A N D E T A I L S :
Name:
TEST2
Comment: 
Target: TEST2
Alerts: 
Schedule: (Next due: over)
Add to
Assets: yes
Alterable Task: no
Auto Delete Reports: Do not automatically
delete reports
Scanner: OpenVAS Default (Type: OpenVAS Scanner)
 Scan
Config: Full and fast
 Slave:
 Order for target hosts: Sequential

Network Source Interface:
 Maximum concurrently executed NVTs per host:
15
 Maximum concurrently scanned hosts: 10
Status: 
New
Reports: 0
(Finished: 0)
Results: 0
Notes: 0
Overrides: 0


openvassd.messages:
[Thu Nov 10 15:11:04 2016][2390] openvassd 5.0.7
started
[Thu Nov 10 15:26:52 2016][2938] Starts a new scan. Target(s) :
10.10.1.130, with max_hosts = 10 and max_checks = 15
[Thu Nov 10
15:26:52 2016][2938] exclude_hosts: Skipped 0 host(s).
[Thu Nov 10
15:26:52 2016][2938] Testing test2 (10.10.1.130) [2957]
[Thu Nov 10
15:29:49 2016][2957] Finished testing 10.10.1.130. Time : 177.62
secs
[Thu Nov 10 15:29:49 2016][2938] Test complete
[Thu Nov 10 15:29:49
2016][2938] Total time to scan all hosts : 184 seconds


openvasmd.log
lib auth: INFO:2016-11-10 15h09.37 utc:2383:
Authentication configuration not found.
event task:MESSAGE:2016-11-10
15h26.42 UTC:2937: Status of task TEST2
(10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Requested
event
task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Task TEST2
(10bb59f1-7506-427f-82c4-0d2c10d5b42f) has been requested to start by
admin
event task:MESSAGE:2016-11-10 15h26.46 UTC:2939: Status of task
TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to
Running
event task:MESSAGE:2016-11-10 15h29.54 UTC:2939: Status of task
TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Done 
 ___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] openvas 8

[Reindl Harald]

Am 10.11.2016 um 16:51 schrieb kalin m:

i have been trying to use openvas 8 for a week now. installed on 3
different linux distributions over vmware fusion and every time i run it
the scan stalls and the os becomes unresponsive after about 2 min - it
shows 1% completed - into the scan and there is no indication why -
nothing in the logs. i initially thought that it has to do with some
networking issues related to the vmware although openvas 6 on a centos
was running just fine in it. i upgraded the vmware. and then tried
running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install
never really worked - not really a huge fan of that distro either. but
the rest all got to the point i was able to create targets and tasks and
start a scan. but they all die after a couple of minutes crashing the os


how much memory do your guests have assigend?
anything below 3 GB won't work at all
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] log_whole_attack = yes logs nothing

[Christian Fischer]

Hi,

On 10.11.2016 14:07, Fmy Oen wrote:
> 2016-11-10 14:16 GMT+02:00 Christian Fischer  net>:
> 
>> log_whole_attack is only logging the following into your
>> openvassd.messages:
>>
> 
> Well, here is what I try to understand: how can I find the reason of error
> status of the scan?
> 
> More specifically, how can I catch any output from nasl script? For example
> if debug_print in http://plugins.openvas.org/nasl.php?oid=11801 emits
> something, how can I catch it? My assumption is that it should appear in
> the file set by dumpfile option:

this debug_print will appear in your openvasmd once you're raising the
"Debug level" within the "Global variable settings" of your Scan
configuration.

Regards,

-- 

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] log_whole_attack = yes logs nothing

[Fmy Oen]

2016-11-10 14:16 GMT+02:00 Christian Fischer :

> log_whole_attack is only logging the following into your
> openvassd.messages:
>

Well, here is what I try to understand: how can I find the reason of error
status of the scan?

More specifically, how can I catch any output from nasl script? For example
if debug_print in http://plugins.openvas.org/nasl.php?oid=11801 emits
something, how can I catch it? My assumption is that it should appear in
the file set by dumpfile option:

> dumpfile
> Some  plugins  might  issue  messages, most of the time to inform you
that something went wrong. If you want to read these messages, set this
value to a given file name. If you want to save space, set this option
value to /dev/null

Is my assumption correct?

Also it's unclear to me of how verbose regular output to the dumpfile is.
Is that a normal situation when several 'Full and fast ultimate' scans
result in literally couple of lines in the dumpfile?

> pcap_compile: syntax error
> pcap_compile: syntax error
> pcap_compile: syntax error
> pcap_compile: syntax error
> pcap_compile: syntax error
> pcap_compile: syntax error
> pcap_compile: unknown host 'addr'
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] log_whole_attack = yes logs nothing

[Christian Fischer]

Hi,

On 10.11.2016 13:09, Fmy Oen wrote:
> So far /var/log/openvas/openvassd.dump is empty after scan finish. Any
> ideas?

log_whole_attack is only logging the following into your openvassd.messages:

> log_whole_attack
> If  this  option  is set to 'yes', openvassd will store the name, pid,
date and target of each plugin launched. This is helpful for monitoring
and debugging purpose, however this option might make openvassd fill
your disk rather quickly.

-> man openvassd

Regards,

-- 

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] log_whole_attack = yes logs nothing

[Fmy Oen]

2016-11-09 17:50 GMT+02:00 Fmy Oen :

> Thanks, now openvassd.log is much more verbose. Will log_whole_attack help
> with the dumpfile output as well? 10 minutes passed since Full and fast
> ultimate task start, but dumpfile is still empty.
>

So far /var/log/openvas/openvassd.dump is empty after scan finish. Any
ideas?
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] openvassd recvfrom infinite loop

[Jan-Oliver Wagner]

Am Freitag, 28. Oktober 2016, 12:23:00 schrieb Thijs Stuurman:
> I notice one particular scan is never really ending. The openvassd just eats
> CPU resources such as:

What means "never" for you?

Are you running the latest patch level?

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Manual start scheduled job bug?

[Jan-Oliver Wagner]

Am Montag, 24. Oktober 2016, 06:54:03 schrieb Thijs Stuurman:
> I have a few OpenVAS installations running, one serving as a 'master' which
> has the others configured as Slaves. This works quite but last Friday I had
> to reinstall two Slaves after I did this:

the openvasmd.log files from the master and the slave would help to
understand what happened.

In principle, manually starting a scheduled task should not create
any problems.

BTW: You should update your setup. There were quite some fixes, some about
scheduling, see the CHANGES of openvas-manager for example.

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] OPENVAS EXPORT TO VERINICE

[Jan-Oliver Wagner]

Am Sonntag, 23. Oktober 2016, 14:49:10 schrieb Παναγιώτης Λεόντιος:
> Whenever I export a GSM scan to VERINICE via a .vna file, there is no rating
> of threats and vulnerabilities in them.
> 
> That is, although there is normal GSM CVSS rating (and GSM Lvl and CVE)
> imported, the Threat Likelihood and Vulnerability Level are always set to 0.
> 
> It seems that the CVSS rating DO NOT adjusts the Threat Likelihood and
> Vulnerability Level into scenario.
> 
> The consequence of course is that no automatic risk assessment can be
> conducted, and therefore importing of openvas scans into verinice is not
> actually useful because ALL the C-I-A calculations are the same for all
> assets and all scenarios under the same process.
> 
> Anyone with a hint or solution or better knowledge of the issue?

have you had a look at

  http://docs.greenbone.net/GSM-Manual/gos-3.1/en/connecting.html#verinice

?

With non-GSM you don't have the automatic connection with verinice.PRO, but
the logic should be the same when doing the transfer manually.

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Scans stop at 1% with "Failed to gnutls_bye: Error in the push function."

[Jan-Oliver Wagner]

Am Sonntag, 16. Oktober 2016, 21:50:01 schrieb Christopher Cavello:
> I'm using Openvas 8 (atomic RPMs) on Centos 6. All my scans stop at 1%
> with "Failed to gnutls_bye: Error in the push function."
> 
> For gnutls, I tried both the centos version (2.8.5) and the atomic
> version (3.1.25) of the library and CLI. Is this merely a certificate
> error, and if so, how do I fix? I have re-generated the certs and
> received the same results. I have pointed openvasmd to both gnutls
> versions with the same results too.

it smells like a certificate problem. Perhaps some remains from
an older installation? 

Doing the certificate creations manually is ... well ... challenging.
There are scripts to assist (see the INSTALL guide).

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] OpenVAS not finding any vulnerabilities that it find during last run

[Jan-Oliver Wagner]

Am Freitag, 14. Oktober 2016, 19:54:49 schrieb Paul Snow:
> I setup openvas in Kali Linux, downloaded MetaSploitable 2 VM and ran
> OpenVAS against it. It took a while for OepnVAS but it eventually showed
> many vulnerabilities (no surprise). I deleted and re-created that task
> against same VM but now it finishes very fast and shows no vulnerably. I
> try running this task multiple times but didn’t had luck. As far as I can
> tell task is using same configuration settings that I used before. Any
> ideas what could be wrong?

have you restarted the target system? Perhaps something died there?
Does the report contain any log results with clues?

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] OpenVAS used in conjunction with NMap for vulnerability analysis

[Jan-Oliver Wagner]

Am Donnerstag, 13. Oktober 2016, 02:03:11 schrieb Paul Snow:
> This may be a dumb question but is it possible to use OpenVAS for
> vulnerability detection with network data scanned by any other tool ( like
> NMap)? If so, can you provide any links on how to accomplish that (such as
> what data is needed and in what format by OpenVAS)

There are some other port scanners in the port scanner section of the scan
config if this is what your are asking. For other vulnerability scanners
there is the OSP concept.

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] OMP 6 - Failed to get report

[Jan-Oliver Wagner]

Am Dienstag, 11. Oktober 2016, 12:22:21 schrieb Ryan Marsh:
> I am trying to run reports from my server running OpenVAS 9/OMP 6.  I seem
> to have hit an inconsistency I can't explain.  When I run a command like:
> 
> omp --get-report [report ID] --format [XML format] test.xml
> 
> I get the response "Failed to get report."  I can't seem to find the cause
> of this.  I double checked that the report I am trying to pull exists
> running:
> 
> omp --get-tasks --details
> 
> I get the list of reports, and sure enough the report I am trying to run is
> on there.  There is nothing present in the openvasmd.log file aside from
> the activity of my last scan.  The get-report command used above seems to
> work fine on another server I have running OpenVAS 8/OMP 6, so I am
> confused why it's not working on this newer installation.  Any suggestions?

well, OpenVAS-9 is BETA and meanwhile it is OMP 7.0.

Please try again, we are currently in the process to update all packages
for the final stable release.

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] OpenVAS hangs the system while using very few ressources

[Jan-Oliver Wagner]

Am Dienstag, 11. Oktober 2016, 11:51:13 schrieb tatooin:
> I'm using OpenVAS to scan large networks using default scan profiles. So
> far so good. However, at some points during the scan, the system becomes
> unresponsive, while OpenVAS keeps running and scanning. So the system
> works, but very very very slowly until the scan finish.
> 
> Sometimes I can't even ssh into the system anymore. When this happens,
> if I run a top command; while the command takes ages to succeed, it
> doesn't show any particular overload. CPU and memory consumption are
> perfectly normal, and actually even low.
> 
> So I suspect a problem of buffer; probably network buffers since this
> happens only when scanning large networks (/22 or above).
> 
> Is there any /proc settings I could tweak to fix the issue ? I'm using
> Openvas on kali linux.

Usually if shell the commands take very long, you see 100% CPU loads.
Maybe your disk IO?

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] GSAD keeps on crashing

[Jan-Oliver Wagner]

Am Dienstag, 11. Oktober 2016, 01:55:47 schrieb Ken:
> I have been trying yo solve the problem with GSAD, keeps on crashing 
> the message printed in the log is :
> 
>  O j: ... this is a bug (sexp.c:1340:vsexp_sscan)
> 
> 
> What are my options for resolving this error.

sending more details, like the versions, the OS, the logs
and what action actually triggers the problem.

-- 
Dr. Jan-Oliver Wagner |  +49-541-335084-0  |  http://www.greenbone.net/
Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 
202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss