Re: [Openvas-discuss] Openvas-discuss Digest, Vol 118, Issue 21

2016-11-22 Thread Katakam Ravi 
Hi ,

Still unable to complete the setup , pls let me know where i am doing wrong. 
any hit Pls!

./openvas-check-setup --v9  out put as below.


Step 2: Checking OpenVAS Manager ...
        ERROR: OpenVAS Manager too old or too new: 6.1+beta3
        FIX: Please install OpenVAS Manager 7.0.
        HINT: Please see the --v6/7/8/9 command line options to check other 
major versions.

 ERROR: Your OpenVAS-9 installation is not yet complete!

Please follow the instructions marked with FIX above and run this
script again.

If you think this result is wrong, please report your observation
and help us to improve this check routine:
http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
Please attach the log-file (/tmp/openvas-check-setup.log) to help us analyze 
the problem.



Output for the command  openvasmd --version as below,

OpenVAS Manager 6.1+beta3
Manager DB revision 165
Copyright (C) 2010-2015 Greenbone Networks GmbH
License GPLv2+: GNU GPL version 2 or later
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.


root@ubuntu:/home/admin-nfv# netstat -anp | grep LISTEN
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      
921/sshd
tcp        0      0 127.0.0.1:6379          0.0.0.0:*               LISTEN      
3488/redis-server 1
tcp6       0      0 :::9391                 :::*                    LISTEN      
18874/openvassd: Wa
tcp6       0      0 :::80                   :::*                    LISTEN      
18928/gsad
tcp6       0      0 :::22                   :::*                    LISTEN      
921/sshd
tcp6       0      0 :::4000                 :::*                    LISTEN      
18927/gsad
tcp6       0      0 :::9390                 :::*                    LISTEN      
18896/openvasmd
unix  2      [ ACC ]     STREAM     LISTENING     16127    3488/redis-server 1 
/var/run/redis/redis.sock
unix  2      [ ACC ]     STREAM     LISTENING     8953     1/init              
@/com/ubuntu/upstart
unix  2      [ ACC ]     SEQPACKET  LISTENING     9072     319/systemd-udevd   
/run/udev/control
unix  2      [ ACC ]     STREAM     LISTENING     11216    946/acpid           
/var/run/acpid.socket
unix  2      [ ACC ]     STREAM     LISTENING     745      389/dbus-daemon     
/var/run/dbus/system_bus_socket




Thanks & Regards,
Ravi.


-"Openvas-discuss"  wrote: 
-
To: openvas-discuss@wald.intevation.org
From: openvas-discuss-requ...@wald.intevation.org
Sent by: "Openvas-discuss" 
Date: 11/21/2016 07:31PM
Subject: Openvas-discuss Digest, Vol 118, Issue 21

Send Openvas-discuss mailing list submissions to
openvas-discuss@wald.intevation.org

To subscribe or unsubscribe via the World Wide Web, visit
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

or, via email, send a message with subject or body 'help' to
openvas-discuss-requ...@wald.intevation.org

You can reach the person managing the list at
openvas-discuss-ow...@wald.intevation.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Openvas-discuss digest..."


Today's Topics:

   1. PDF report stuck (Abel Browarnik)
   2. Re: PDF report stuck (F?bio Fernandes)
   3. Re: Need Help to install openvas on ubuntu 14.04. (Antu Sanadi)
   4. Re: Can't edit one single port list (Antu Sanadi)
   5. gsad strict transport security (Thijs Stuurman)
   6. Re: gsad strict transport security (Christian Fischer)
   7. Re: PDF report stuck (Antu Sanadi)


--

Message: 1
Date: Sun, 20 Nov 2016 08:33:43 +
From: Abel Browarnik 
To: "openvas-discuss@wald.intevation.org"

Subject: [Openvas-discuss] PDF report stuck
Message-ID:


Content-Type: text/plain; charset="cp1255"

Hi,

I have run a scan for a bunch of endpoints. The result seems to be quite big. 
As a result (I guess) when I ask to download a pdf report I see the browser 
stuck and no report is obtained. How can I obtain it, even manually?
The XML file is 24.8 MB. Maybe this gives a clue?

Thank you in advance

Abel

-- next part --
An HTML attachment was scrubbed...
URL: 


--

Message: 2
Date: Sun, 20 Nov 2016 21:42:00 +
From: F?bio Fernandes 
To: Abel Browarnik 
Cc: "openvas-discuss@wald.intevation.org"

Subject: Re: [Openvas-discuss] PDF report stuck
Message-ID: 
Content-Type: text/plain; charset="utf-8"

That seems like a huge report. Try to get it through the manager API.

Fabio

> No dia

Re: [Openvas-discuss] fedora + openvas 8

2016-11-22 Thread kalin m 



On 11/22/16 3:58 PM, Reindl Harald wrote:



Am 22.11.2016 um 20:52 schrieb kalin m:

hi all...

from: http://www.openvas.org/install-packages-v7.html (there is no v8?!)

i do:

wget -q -O - http://www.atomicorp.com/installers/atomic |sh


why in the world do you touch anything from Atmoic on Fedora?


because that's what it says on the openvas site?!



man dnf
man yum


and?! apparently they both work with rpms. 'dnf install openvas' didn't 
do much either. it's not funny anymore...


what is your point?

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] fedora + openvas 8

2016-11-22 Thread Reindl Harald 



Am 22.11.2016 um 20:52 schrieb kalin m:

hi all...

from: http://www.openvas.org/install-packages-v7.html (there is no v8?!)

i do:

wget -q -O - http://www.atomicorp.com/installers/atomic |sh


why in the world do you touch anything from Atmoic on Fedora?

man dnf
man yum

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] fedora + openvas 8

2016-11-22 Thread kalin m 


hi all...

from: http://www.openvas.org/install-packages-v7.html (there is no v8?!)

i do:

wget -q -O - http://www.atomicorp.com/installers/atomic |sh

and then:

yum install openvas

i get:

No package openvas available...


i've been trying to get openvas 8 working on a variety of *nixes for 
that last few weeks on a vmware fusion. at least 4 different installs... 
they all crap out after about a coupe of minutes of an active scan with 
no indication in the logs why. fedora was missing in the list and i got 
an email here that suggests that openvas on fedora will do fine... 
except the thing above of course...


short form building sources, is there another awesome way to get openvas 
8 on fedora?!


thanks...

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] openvas-setup issue

2016-11-22 Thread Katakam Ravi 
Hi All,

Getting below error when executing the - openvas-setup command on redhat. 
unable to proceed pls help out on this.


[root@nads-as-108p ~]# openvas-setup

Openvas Setup, Version: 1.0


Step 1: Update NVT, CERT, and SCAP data
Please note this step could take some time.
Once completed, this will be updated automatically every 24 hours

Select download method
* wget (NVT download only)
* curl (NVT download only)
* rsync

  Note: If rsync requires a proxy, you should define that before this step.
Downloader [Default: rsync]
Updating NVTs
openvassd: symbol lookup error: /lib64/libopenvas_base.so.8: undefined symbol: 
ssh_pki_key_ecdsa_name
[i] This script synchronizes an NVT collection with the 'OpenVAS NVT Feed'.
[i] The 'OpenVAS NVT Feed' is provided by 'The OpenVAS Project'.
[i] Online information about this feed: 
'http://www.openvas.org/openvas-nvt-feed.html'.
[i] NVT dir:
[w] Could not determine feed version.
[i] rsync is not recommended for the initial sync. Falling back on http.
[i] Will use wget
[i] Using GNU wget: /usr/bin/wget
[i] Configured NVT http feed: 
http://www.openvas.org/openvas-nvt-feed-current.tar.bz2
[i] Downloading to: 
/tmp/openvas-nvt-sync.Ogl0rz7fZY/openvas-feed-2016-11-22-9573.tar.bz2
mkdir: cannot create directory ââ: No such file or directory
[i] Checking dir: ok
[i] Checking MD5 checksum: /usr/bin/md5sum: /md5sums: No such file or directory
not ok
Error: md5sums not correct. Your NVT collection might be broken now.
Please try this for details: cd "" ; /usr/bin/md5sum -c "/md5sums" | less
[root@nads-as-108p ~]#


Thanks & Regards
Ravi.
=-=-=
Notice: The information contained in this e-mail
message and/or attachments to it may contain 
confidential or privileged information. If you are 
not the intended recipient, any dissemination, use, 
review, distribution, printing or copying of the 
information contained in this e-mail message 
and/or attachments to it are strictly prohibited. If 
you have received this communication in error, 
please notify us by reply e-mail or telephone and 
immediately and permanently delete the message 
and any attachments. Thank you


___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Open UDP port only discovered with small Port List

2016-11-22 Thread Christian Fischer 
Hi,

On 22.11.2016 13:24, Daniel Walker wrote:
> OpenVAS did not report the SNMP
> service.

did not report the service or the UDP port at all? You can see in a
hosts details (after the scan has finished) which open TCP and UDP ports
where identified.

> I disabled the firewall and did the same scan again - and
> OpenVAS found the SNMP service.

so i guess this is where you can do further research. Somehow the
firewall might block / limit the requests from the scanning machine.

Regards,

-- 

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] Open UDP port only discovered with small Port List

2016-11-22 Thread Daniel Walker 
Hi,

Many thanks for your explanations!

> nmap -sU -p U:$yourportlist $targetip
I first did a scan with nmap -sU -p U:140-180 $targetip and nmap
reported that all scanned ports are open|filtered. So I did a new scan
with additional -sV and nmap found the SNMP service running on port
161.
Back in OpenVAS, I created a new Port List with exactly the same UDP
port range and no tcp ports. However, OpenVAS did not report the SNMP
service.

> this gives you already a pointer. In general it is recommended to
> whitelist the scanning machine to avoid such issues while port scanning.
I created a new rule in the Windows Firewall allowing all incoming
traffic from the scanning machine. But the results remain the same! To
crosscheck, I disabled the firewall and did the same scan again - and
OpenVAS found the SNMP service.

> It won't solve your issue but you should note that these are quite
> outdated components of OpenVAS. Please update to the current components:
> Libraries 8.0.8
> Scanner 5.0.7
> Manager 6.0.9
I will do this any time soon!

> Both lists contain port 161?
Yes, all the lists used contain port 161.

Regards
Daniel
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] email alert fail to send via MTA

2016-11-22 Thread Fábio Fernandes 
Alert config seems fine. Check the manager logs maybe they will indicate
the error. You will need probably to raise the log level.

Em 22/11/2016 01:39, "Matthew Ma 馬耀堂 (奧圖碼)" 
escreveu:

> Here is my alert setting:
>
> https://s15.postimg.org/5kvep0ofv/image.png
>
> Thank you
>
>
>
> Matthew
>
>
>
> *From:* Fábio Fernandes [mailto:fabiogfernan...@gmail.com]
> *Sent:* Saturday, November 19, 2016 11:55 PM
> *To:* Matthew Ma 馬耀堂 (奧圖碼)
> *Cc:* openvas-discuss@wald.intevation.org
> *Subject:* Re: [Openvas-discuss] email alert fail to send via MTA
>
>
>
> There seems to be a problem with the alert since it gives error 500. Can
> you provide some details on the alert configuration?
>
>
>
> Fabio
>
> No dia 18/11/2016, às 02:00, Matthew Ma 馬耀堂 (奧圖碼) 
> escreveu:
>
>
>
> Hi all,
>
>
>
> I have installed openvas on my centos 6 server.
>
> I have configured a mail relay server in another centos 6 server.
>
> They are in the same subnet, iptables disabled.
>
> However, every mail openvas sent did not log in mail relay server
>
> Since our company only allow that mail relay server, openvas cannot send
> mail to my company mail server.
>
>
>
> I did some test:
>
> Openvas server telnet to mail relay server   [PASS]
>
> Then send mail to my company mail server  [PASS]
>
> Use openvas test alert
> [Operation: Test Alert ,Status code: 500 ,Status message: Internal error]
>
>
>
> Is there anyone can help?
>
>
>
> Thank you!!!
>
>
> --
>
> This e-mail transmission and its attachment are intended only for the use
> of the individual or entity to which it is addressed, and may contain
> information that is privileged, confidential and exempted from disclosure
> under applicable law. If the reader is not the intended recipient, you are
> hereby notified that any disclosure, dissemination, distribution or copying
> of this communication, in part or entirety, is strictly prohibited. If you
> are not the intended recipient for this confidential e-mail, delete it
> immediately without keeping or distributing any copy and notify the sender
> immediately. The hard copies should also be destroyed. Thank you for your
> cooperation. It is advisable that any unauthorized use of confidential
> information of this Company is strictly prohibited; and any information in
> this email that does not relate to the official business of this Company
> shall be deemed as neither given nor endorsed by this Company.
>
>
>
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
>
>
>
> --
> This e-mail transmission and its attachment are intended only for the use
> of the individual or entity to which it is addressed, and may contain
> information that is privileged, confidential and exempted from disclosure
> under applicable law. If the reader is not the intended recipient, you are
> hereby notified that any disclosure, dissemination, distribution or copying
> of this communication, in part or entirety, is strictly prohibited. If you
> are not the intended recipient for this confidential e-mail, delete it
> immediately without keeping or distributing any copy and notify the sender
> immediately. The hard copies should also be destroyed. Thank you for your
> cooperation. It is advisable that any unauthorized use of confidential
> information of this Company is strictly prohibited; and any information in
> this email that does not relate to the official business of this Company
> shall be deemed as neither given nor endorsed by this Company.
>
>
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
>
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Open UDP port only discovered with small Port List

2016-11-22 Thread Fábio Fernandes 
Both lists contain port 161?

Em 22/11/2016 07:02, "Christian Fischer" 
escreveu:

> Hi,
>
> On 21.11.2016 23:27, Daniel Walker wrote:
> > If I deactivate the Windows Firewall on the target system, OpenVAS
> > does always detect the SNMP service no matter what Port List is used.
>
> this gives you already a pointer. In general it is recommended to
> whitelist the scanning machine to avoid such issues while port scanning.
>
> You can also do some further debugging and call nmap (this is what
> OpenVAS is using for port scanning) from command line like:
>
> nmap -sU -p U:$yourportlist $targetip
>
> > I’m running OpenVAS Scanner 5.0.4 with OpenVAS Manager 6.0.5 and
> > Greenbone Security Assistant 6.0.5 on a Kali Linux 2016.1
>
> It won't solve your issue but you should note that these are quite
> outdated components of OpenVAS. Please update to the current components:
>
> Libraries 8.0.8
> Scanner 5.0.7
> Manager 6.0.9
> Greenbone Security Assistant (GSA) 6.0.11
>
> Regards,
>
> --
>
> Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
> Greenbone Networks GmbH | http://greenbone.net
> Neuer Graben 17, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
> Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss