[Openvas-discuss] In a case of the block, skip scanning.
Dears, Could U please advise me, how I can skip scanning the host if it blocked my IP during the scan? ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] openvas 8
Am 10.11.2016 um 19:37 schrieb kalin m: i'd be really appreciative of a direction here. i've been trying this for a week and my deadline is almost here. if anybody has a winning combination of openvas 8 on any unix like os within vmware fusion 8.5 please let me know... [root@openvas:~]$ rpm -qa | grep openvas openvas-scanner-5.0.6-1.fc24.x86_64 openvas-manager-6.0.9-1.fc24.x86_64 openvas-gsa-6.0.11-3.fc24.x86_64 openvas-cli-1.4.4-1.fc24.x86_64 openvas-libraries-8.0.8-2.fc24.x86_64 running on Fedora 24 x86_64 for many months with just the Fedora packages on ESXi 5.5 which should make no differnce to VMware Fusion / Workstation at all ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] (SOLVED sigh...) Credential Authentication Failing during scan
As turns out, it was a firewall issue on the target box. Although I could SSH to the target from a terminal commandline, after reviewing the firewall rules I can see why OpenVAS could not. In our default iptables config we specify a hit count (which is not be a problem for manual logins), and OpenVAS likely hammered the port causing SSHD on the target to quit responding. Thanks again, Ted... ## Thanks for Christians earlier reply and request for more information. In regards to the issue I'm having where OpenVAS does not appear to SSH into a target machine using the credentials created. I followed previous advice and added ssh debugging on the target box, log_whole_attack etc, and gathered more information. A few interesting notes: 1. Upon openvas-start fhe following is added to openvasmd.log: "lib auth: INFO:2016-11-10 15h09.37 utc:2383: Authentication configuration not found" 2. SSH Authentication to the target failed during the scan 3. SSH debugging as well as /var/log/secure on the target does not even show that there was an attempt to log in from the OpenVAS Workstation. Below is some additional information. Any help with this would be appreciated... A P P L I C A T I O N S E R V E R ( T A R G E T ): Centos 6.8 Allows keys and or password authentication SSH Debugging enabled O P E N V A S W O R K S T A T I O N : Kali Rolling OpenVAS 8 O P E N V A S C O N F I G (/etc/openvas/openvassd.conf): kb_location=/var/lib/redis/redis.sock max_checks=15 log_whole_attack=yes T A R G E T D E T A I L S : Name: TEST2 Comment: My test box.. Hosts: 10.10.1.130 Exclude Hosts: Reverse Lookup Only: No Reverse Lookup Unify: No Maximum number of hosts: 1 Port List: OpenVAS Default Alive Test: Scan Config Default Credentials for authenticated checks: SSH: test2_root on port 22 SMB: ESXi: N O T E : test2_root is a credential created using a username/password combination that does work when I use those credentials from a command line S C A N D E T A I L S : Name: TEST2 Comment: Target: TEST2 Alerts: Schedule: (Next due: over) Add to Assets: yes Alterable Task: no Auto Delete Reports: Do not automatically delete reports Scanner: OpenVAS Default (Type: OpenVAS Scanner) Scan Config: Full and fast Slave: Order for target hosts: Sequential Network Source Interface: Maximum concurrently executed NVTs per host: 15 Maximum concurrently scanned hosts: 10 Status: New Reports: 0 (Finished: 0) Results: 0 Notes: 0 Overrides: 0 openvassd.messages: [Thu Nov 10 15:11:04 2016][2390] openvassd 5.0.7 started [Thu Nov 10 15:26:52 2016][2938] Starts a new scan. Target(s) : 10.10.1.130, with max_hosts = 10 and max_checks = 15 [Thu Nov 10 15:26:52 2016][2938] exclude_hosts: Skipped 0 host(s). [Thu Nov 10 15:26:52 2016][2938] Testing test2 (10.10.1.130) [2957] [Thu Nov 10 15:29:49 2016][2957] Finished testing 10.10.1.130. Time : 177.62 secs [Thu Nov 10 15:29:49 2016][2938] Test complete [Thu Nov 10 15:29:49 2016][2938] Total time to scan all hosts : 184 seconds openvasmd.log lib auth: INFO:2016-11-10 15h09.37 utc:2383: Authentication configuration not found. event task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Requested event task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has been requested to start by admin event task:MESSAGE:2016-11-10 15h26.46 UTC:2939: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Running event task:MESSAGE:2016-11-10 15h29.54 UTC:2939: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Done ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] openvas 8
hi all... i'd be really appreciative of a direction here. i've been trying this for a week and my deadline is almost here. if anybody has a winning combination of openvas 8 on any unix like os within vmware fusion 8.5 please let me know... thanks... On 11/10/16 12:10 PM, kalin m wrote: On 11/10/16 11:06 AM, Reindl Harald wrote: Am 10.11.2016 um 16:51 schrieb kalin m: i have been trying to use openvas 8 for a week now. installed on 3 different linux distributions over vmware fusion and every time i run it the scan stalls and the os becomes unresponsive after about 2 min - it shows 1% completed - into the scan and there is no indication why - nothing in the logs. i initially thought that it has to do with some networking issues related to the vmware although openvas 6 on a centos was running just fine in it. i upgraded the vmware. and then tried running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install never really worked - not really a huge fan of that distro either. but the rest all got to the point i was able to create targets and tasks and start a scan. but they all die after a couple of minutes crashing the os how much memory do your guests have assigend? anything below 3 GB won't work at all yea... i know. currently at 5... ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] openvas 8
On 11/10/16 11:06 AM, Reindl Harald wrote: Am 10.11.2016 um 16:51 schrieb kalin m: i have been trying to use openvas 8 for a week now. installed on 3 different linux distributions over vmware fusion and every time i run it the scan stalls and the os becomes unresponsive after about 2 min - it shows 1% completed - into the scan and there is no indication why - nothing in the logs. i initially thought that it has to do with some networking issues related to the vmware although openvas 6 on a centos was running just fine in it. i upgraded the vmware. and then tried running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install never really worked - not really a huge fan of that distro either. but the rest all got to the point i was able to create targets and tasks and start a scan. but they all die after a couple of minutes crashing the os how much memory do your guests have assigend? anything below 3 GB won't work at all yea... i know. currently at 5... ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Credential Authentication Failing during scan
Thanks for Christians earlier reply and request for more information. In regards to the issue I'm having where OpenVAS does not appear to SSH into a target machine using the credentials created. I followed previous advice and added ssh debugging on the target box, log_whole_attack etc, and gathered more information. A few interesting notes: 1. Upon openvas-start fhe following is added to openvasmd.log: "lib auth: INFO:2016-11-10 15h09.37 utc:2383: Authentication configuration not found" 2. SSH Authentication to the target failed during the scan 3. SSH debugging as well as /var/log/secure on the target does not even show that there was an attempt to log in from the OpenVAS Workstation. Below is some additional information. Any help with this would be appreciated... A P P L I C A T I O N S E R V E R ( T A R G E T ): Centos 6.8 Allows keys and or password authentication SSH Debugging enabled O P E N V A S W O R K S T A T I O N : Kali Rolling OpenVAS 8 O P E N V A S C O N F I G (/etc/openvas/openvassd.conf): kb_location=/var/lib/redis/redis.sock max_checks=15 log_whole_attack=yes T A R G E T D E T A I L S : Name: TEST2 Comment: My test box.. Hosts: 10.10.1.130 Exclude Hosts: Reverse Lookup Only: No Reverse Lookup Unify: No Maximum number of hosts: 1 Port List: OpenVAS Default Alive Test: Scan Config Default Credentials for authenticated checks: SSH: test2_root on port 22 SMB: ESXi: N O T E : test2_root is a credential created using a username/password combination that does work when I use those credentials from a command line S C A N D E T A I L S : Name: TEST2 Comment: Target: TEST2 Alerts: Schedule: (Next due: over) Add to Assets: yes Alterable Task: no Auto Delete Reports: Do not automatically delete reports Scanner: OpenVAS Default (Type: OpenVAS Scanner) Scan Config: Full and fast Slave: Order for target hosts: Sequential Network Source Interface: Maximum concurrently executed NVTs per host: 15 Maximum concurrently scanned hosts: 10 Status: New Reports: 0 (Finished: 0) Results: 0 Notes: 0 Overrides: 0 openvassd.messages: [Thu Nov 10 15:11:04 2016][2390] openvassd 5.0.7 started [Thu Nov 10 15:26:52 2016][2938] Starts a new scan. Target(s) : 10.10.1.130, with max_hosts = 10 and max_checks = 15 [Thu Nov 10 15:26:52 2016][2938] exclude_hosts: Skipped 0 host(s). [Thu Nov 10 15:26:52 2016][2938] Testing test2 (10.10.1.130) [2957] [Thu Nov 10 15:29:49 2016][2957] Finished testing 10.10.1.130. Time : 177.62 secs [Thu Nov 10 15:29:49 2016][2938] Test complete [Thu Nov 10 15:29:49 2016][2938] Total time to scan all hosts : 184 seconds openvasmd.log lib auth: INFO:2016-11-10 15h09.37 utc:2383: Authentication configuration not found. event task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Requested event task:MESSAGE:2016-11-10 15h26.42 UTC:2937: Task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has been requested to start by admin event task:MESSAGE:2016-11-10 15h26.46 UTC:2939: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Running event task:MESSAGE:2016-11-10 15h29.54 UTC:2939: Status of task TEST2 (10bb59f1-7506-427f-82c4-0d2c10d5b42f) has changed to Done ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] openvas 8
Am 10.11.2016 um 16:51 schrieb kalin m: i have been trying to use openvas 8 for a week now. installed on 3 different linux distributions over vmware fusion and every time i run it the scan stalls and the os becomes unresponsive after about 2 min - it shows 1% completed - into the scan and there is no indication why - nothing in the logs. i initially thought that it has to do with some networking issues related to the vmware although openvas 6 on a centos was running just fine in it. i upgraded the vmware. and then tried running openvas 8 on centos, debian, kali and ubuntu. the ubuntu install never really worked - not really a huge fan of that distro either. but the rest all got to the point i was able to create targets and tasks and start a scan. but they all die after a couple of minutes crashing the os how much memory do your guests have assigend? anything below 3 GB won't work at all ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] log_whole_attack = yes logs nothing
Hi, On 10.11.2016 14:07, Fmy Oen wrote: > 2016-11-10 14:16 GMT+02:00 Christian Fischernet>: > >> log_whole_attack is only logging the following into your >> openvassd.messages: >> > > Well, here is what I try to understand: how can I find the reason of error > status of the scan? > > More specifically, how can I catch any output from nasl script? For example > if debug_print in http://plugins.openvas.org/nasl.php?oid=11801 emits > something, how can I catch it? My assumption is that it should appear in > the file set by dumpfile option: this debug_print will appear in your openvasmd once you're raising the "Debug level" within the "Global variable settings" of your Scan configuration. Regards, -- Christian Fischer | PGP Key: 0x54F3CE5B76C597AD Greenbone Networks GmbH | http://greenbone.net Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] log_whole_attack = yes logs nothing
2016-11-10 14:16 GMT+02:00 Christian Fischer: > log_whole_attack is only logging the following into your > openvassd.messages: > Well, here is what I try to understand: how can I find the reason of error status of the scan? More specifically, how can I catch any output from nasl script? For example if debug_print in http://plugins.openvas.org/nasl.php?oid=11801 emits something, how can I catch it? My assumption is that it should appear in the file set by dumpfile option: > dumpfile > Some plugins might issue messages, most of the time to inform you that something went wrong. If you want to read these messages, set this value to a given file name. If you want to save space, set this option value to /dev/null Is my assumption correct? Also it's unclear to me of how verbose regular output to the dumpfile is. Is that a normal situation when several 'Full and fast ultimate' scans result in literally couple of lines in the dumpfile? > pcap_compile: syntax error > pcap_compile: syntax error > pcap_compile: syntax error > pcap_compile: syntax error > pcap_compile: syntax error > pcap_compile: syntax error > pcap_compile: unknown host 'addr' ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] log_whole_attack = yes logs nothing
Hi, On 10.11.2016 13:09, Fmy Oen wrote: > So far /var/log/openvas/openvassd.dump is empty after scan finish. Any > ideas? log_whole_attack is only logging the following into your openvassd.messages: > log_whole_attack > If this option is set to 'yes', openvassd will store the name, pid, date and target of each plugin launched. This is helpful for monitoring and debugging purpose, however this option might make openvassd fill your disk rather quickly. -> man openvassd Regards, -- Christian Fischer | PGP Key: 0x54F3CE5B76C597AD Greenbone Networks GmbH | http://greenbone.net Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] log_whole_attack = yes logs nothing
2016-11-09 17:50 GMT+02:00 Fmy Oen: > Thanks, now openvassd.log is much more verbose. Will log_whole_attack help > with the dumpfile output as well? 10 minutes passed since Full and fast > ultimate task start, but dumpfile is still empty. > So far /var/log/openvas/openvassd.dump is empty after scan finish. Any ideas? ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] openvassd recvfrom infinite loop
Am Freitag, 28. Oktober 2016, 12:23:00 schrieb Thijs Stuurman: > I notice one particular scan is never really ending. The openvassd just eats > CPU resources such as: What means "never" for you? Are you running the latest patch level? -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Manual start scheduled job bug?
Am Montag, 24. Oktober 2016, 06:54:03 schrieb Thijs Stuurman: > I have a few OpenVAS installations running, one serving as a 'master' which > has the others configured as Slaves. This works quite but last Friday I had > to reinstall two Slaves after I did this: the openvasmd.log files from the master and the slave would help to understand what happened. In principle, manually starting a scheduled task should not create any problems. BTW: You should update your setup. There were quite some fixes, some about scheduling, see the CHANGES of openvas-manager for example. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] OPENVAS EXPORT TO VERINICE
Am Sonntag, 23. Oktober 2016, 14:49:10 schrieb Παναγιώτης Λεόντιος: > Whenever I export a GSM scan to VERINICE via a .vna file, there is no rating > of threats and vulnerabilities in them. > > That is, although there is normal GSM CVSS rating (and GSM Lvl and CVE) > imported, the Threat Likelihood and Vulnerability Level are always set to 0. > > It seems that the CVSS rating DO NOT adjusts the Threat Likelihood and > Vulnerability Level into scenario. > > The consequence of course is that no automatic risk assessment can be > conducted, and therefore importing of openvas scans into verinice is not > actually useful because ALL the C-I-A calculations are the same for all > assets and all scenarios under the same process. > > Anyone with a hint or solution or better knowledge of the issue? have you had a look at http://docs.greenbone.net/GSM-Manual/gos-3.1/en/connecting.html#verinice ? With non-GSM you don't have the automatic connection with verinice.PRO, but the logic should be the same when doing the transfer manually. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Scans stop at 1% with "Failed to gnutls_bye: Error in the push function."
Am Sonntag, 16. Oktober 2016, 21:50:01 schrieb Christopher Cavello: > I'm using Openvas 8 (atomic RPMs) on Centos 6. All my scans stop at 1% > with "Failed to gnutls_bye: Error in the push function." > > For gnutls, I tried both the centos version (2.8.5) and the atomic > version (3.1.25) of the library and CLI. Is this merely a certificate > error, and if so, how do I fix? I have re-generated the certs and > received the same results. I have pointed openvasmd to both gnutls > versions with the same results too. it smells like a certificate problem. Perhaps some remains from an older installation? Doing the certificate creations manually is ... well ... challenging. There are scripts to assist (see the INSTALL guide). -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] OpenVAS not finding any vulnerabilities that it find during last run
Am Freitag, 14. Oktober 2016, 19:54:49 schrieb Paul Snow: > I setup openvas in Kali Linux, downloaded MetaSploitable 2 VM and ran > OpenVAS against it. It took a while for OepnVAS but it eventually showed > many vulnerabilities (no surprise). I deleted and re-created that task > against same VM but now it finishes very fast and shows no vulnerably. I > try running this task multiple times but didn’t had luck. As far as I can > tell task is using same configuration settings that I used before. Any > ideas what could be wrong? have you restarted the target system? Perhaps something died there? Does the report contain any log results with clues? -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] OpenVAS used in conjunction with NMap for vulnerability analysis
Am Donnerstag, 13. Oktober 2016, 02:03:11 schrieb Paul Snow: > This may be a dumb question but is it possible to use OpenVAS for > vulnerability detection with network data scanned by any other tool ( like > NMap)? If so, can you provide any links on how to accomplish that (such as > what data is needed and in what format by OpenVAS) There are some other port scanners in the port scanner section of the scan config if this is what your are asking. For other vulnerability scanners there is the OSP concept. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] OMP 6 - Failed to get report
Am Dienstag, 11. Oktober 2016, 12:22:21 schrieb Ryan Marsh: > I am trying to run reports from my server running OpenVAS 9/OMP 6. I seem > to have hit an inconsistency I can't explain. When I run a command like: > > omp --get-report [report ID] --format [XML format] test.xml > > I get the response "Failed to get report." I can't seem to find the cause > of this. I double checked that the report I am trying to pull exists > running: > > omp --get-tasks --details > > I get the list of reports, and sure enough the report I am trying to run is > on there. There is nothing present in the openvasmd.log file aside from > the activity of my last scan. The get-report command used above seems to > work fine on another server I have running OpenVAS 8/OMP 6, so I am > confused why it's not working on this newer installation. Any suggestions? well, OpenVAS-9 is BETA and meanwhile it is OMP 7.0. Please try again, we are currently in the process to update all packages for the final stable release. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] OpenVAS hangs the system while using very few ressources
Am Dienstag, 11. Oktober 2016, 11:51:13 schrieb tatooin: > I'm using OpenVAS to scan large networks using default scan profiles. So > far so good. However, at some points during the scan, the system becomes > unresponsive, while OpenVAS keeps running and scanning. So the system > works, but very very very slowly until the scan finish. > > Sometimes I can't even ssh into the system anymore. When this happens, > if I run a top command; while the command takes ages to succeed, it > doesn't show any particular overload. CPU and memory consumption are > perfectly normal, and actually even low. > > So I suspect a problem of buffer; probably network buffers since this > happens only when scanning large networks (/22 or above). > > Is there any /proc settings I could tweak to fix the issue ? I'm using > Openvas on kali linux. Usually if shell the commands take very long, you see 100% CPU loads. Maybe your disk IO? -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] GSAD keeps on crashing
Am Dienstag, 11. Oktober 2016, 01:55:47 schrieb Ken: > I have been trying yo solve the problem with GSAD, keeps on crashing > the message printed in the log is : > > O j: ... this is a bug (sexp.c:1340:vsexp_sscan) > > > What are my options for resolving this error. sending more details, like the versions, the OS, the logs and what action actually triggers the problem. -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss