Re: [Openvas-discuss] NVT feed too old (15 days)

2017-08-09 Thread Christian Fischer 
Hi,

On 09.08.2017 14:22, jratl...@bluemarble.net wrote:
> Why is my OpenVAS NVT feed always more than 14 days old even after a sync?
> I've tried the ISO install from the openvas site and the ubutnu 16.04 PPA
> packages, but I get the same result on both.
> 
> Is the feed supposed to lag this much?

this is currently expected, see the following announcement for some
background info:

http://lists.wald.intevation.org/pipermail/openvas-announce/2017-June/000202.html

> If so, why does it say "too old" when I check the feed status?
> 
> Thanks.

Regards,

--

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neumarkt 12, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] SCAP and/or CERT Database missing on the OMP Server

2017-08-09 Thread Christian Fischer 
Hi,

On 09.08.2017 14:54, Neeraj Shah wrote:
> Hello,
> Today i downloaded the virtual appliance and set it up.  The version # i
> see upon logging in to Web UI is GreenBorne OS 4.0.5.   I am getting 2
> notifications in the Web UI.
> (1)  SCAP and/or CERT Database missing on the OMP Server
> (2) The NVT Feed is 14 days old. 

(2) is currently expected, see the following announcement for some
background info:

http://lists.wald.intevation.org/pipermail/openvas-announce/2017-June/000202.html

> As for (1), I have clicked on the Run Feed Update option in the virtual
> appliance menu. If i do a "ps -ef | grep sync" in the command line, i
> see there are 2 process running " ./bin/sh /usr/bin/greenborne-nvt-sync"
> and " "/usr/bin/greenborne-feed-sync".  But these are running forever. 
> I have 1GBPS connection and it shouldn't take this long to update a feed. 
> (2) When i was setting up the Virtual appliance, i clicked on update the
> feed now option.  Why does this process then download a NVT feed that is
> 14 days old in the first place ?
> 
> 
> I created a ticket with Greenborne support and they are saying version
> 4.0.5 is unsupported.  I am surprised that OpenVAS (being a security
> product) is still publishing this version for users. How can i get a
> Virtual appliance with the latest Greenborne OS version in that case ?
> 
> 
> *Neeraj Shah,  CyberSecurity Engineer*
> 
> *Dakota Consulting Incorporated* 
> Corporate Headquarters: 1110 Bonifant Street, Suite 310 | Silver Spring,
> MD 20910-3358 
> *Mobile* ': 6073728057 | Fax 7 240.307.0102
>  | Email *: neeraj.s...@dakota-consulting.com 
> Website þ: www.Dakota-Consulting.com 

--

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neumarkt 12, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] SCAP and/or CERT Database missing on the OMP Server

2017-08-09 Thread Neeraj Shah 
Hello,
Today i downloaded the virtual appliance and set it up.  The version # i
see upon logging in to Web UI is GreenBorne OS 4.0.5.   I am getting 2
notifications in the Web UI.
(1)  SCAP and/or CERT Database missing on the OMP Server
(2) The NVT Feed is 14 days old.

As for (1), I have clicked on the Run Feed Update option in the virtual
appliance menu. If i do a "ps -ef | grep sync" in the command line, i see
there are 2 process running " ./bin/sh /usr/bin/greenborne-nvt-sync" and "
"/usr/bin/greenborne-feed-sync".  But these are running forever.  I have
1GBPS connection and it shouldn't take this long to update a feed.
(2) When i was setting up the Virtual appliance, i clicked on update the
feed now option.  Why does this process then download a NVT feed that is 14
days old in the first place ?


I created a ticket with Greenborne support and they are saying version
4.0.5 is unsupported.  I am surprised that OpenVAS (being a security
product) is still publishing this version for users. How can i get a
Virtual appliance with the latest Greenborne OS version in that case ?


*Neeraj Shah,  CyberSecurity Engineer*

*Dakota Consulting Incorporated*
Corporate Headquarters: 1110 Bonifant Street, Suite 310 | Silver Spring, MD
20910-3358
*Mobile* ': 6073728057 | Fax 7 240.307.0102 <+12403070102> | Email *:
neeraj.s...@dakota-consulting.com
Website þ: www.Dakota-Consulting.com 
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] NVT feed too old (15 days)

2017-08-09 Thread Ralf Hildebrandt 
* jratl...@bluemarble.net :
> Why is my OpenVAS NVT feed always more than 14 days old even after a sync?
> I've tried the ISO install from the openvas site and the ubutnu 16.04 PPA
> packages, but I get the same result on both.
> 
> Is the feed supposed to lag this much? If so, why does it say "too old"
> when I check the feed status?

Currently (last update was 6th of August)

/usr/sbin/greenbone-nvt-sync --feedversion
201707210629

Performing an update no (which takes a long time and reminds me why
I'm doing this via cron during the night):

/usr/sbin/greenbone-nvt-sync --feedversion
201707260553

-- 
Ralf Hildebrandt   Charite Universitätsmedizin Berlin
ralf.hildebra...@charite.deCampus Benjamin Franklin
https://www.charite.de Hindenburgdamm 30, 12203 Berlin
Geschäftsbereich IT, Abt. Netzwerk fon: +49-30-450.570.155
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] NVT feed too old (15 days)

2017-08-09 Thread jratliff 
Why is my OpenVAS NVT feed always more than 14 days old even after a sync?
I've tried the ISO install from the openvas site and the ubutnu 16.04 PPA
packages, but I get the same result on both.

Is the feed supposed to lag this much? If so, why does it say "too old"
when I check the feed status?

Thanks.

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] Microsoft Fixes 48 Security Vulnerabilities (25-Critical, 21-Important, 02-Moderate)

2017-08-09 Thread Antu Sanadi 

Hello All,

Microsoft has fixed the *48 *security vulnerabilities as part of August  
2017 Patch Tuesday.
Most of the them allows the *remote code execution*. According to 
severity, *25 *are rated

*Critical*, *21 *are *Important *and *two* are *Moderate*.

These vulnerabilities impact all supported versions of *Microsoft's 
Windows operating systems*

 and following softwares:
* - Internet Explorer,**
** - Microsoft Edge,**
** - Microsoft SharePoint,**
** - Adobe Flash Player and**
** - Microsoft SQL Server.*

The most serious RCE vulnerability (*CVE-2017-8620*) is related to 
how*Windows Search*
handles objects in memory.  Attacker who successfully exploited this 
vulnerability could

take control of the affected system.

A second RCE (rated important) is tied to*Windows 
Hyper-V***(*CVE-2017-8664*) and exists
when a host server fails to properly validate input from an 
authenticated user on a guest
operating system. An attacker who successfully exploited the 
vulnerability could execute

arbitrary code on the host operating system.

Microsoft has also released critical security updates for the Adobe 
Flash Player for*Internet

Explorer*, although Flash Player reach EOL at the end of 2020.

We have now created the NVTs to detect all these vulnerabilities(soon 
will be update into feed),
Please do scan with updated feed to detect the vulnerabilities and 
strongly recommended to

apply security patches as soon as possible to stay secure.

Thanks,
Antu Sanadi

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss