Re: [Openvas-discuss] Scan a firewalled target

2017-06-15 Thread Christian Fischer 
Hi,

On 15.06.2017 21:23, Alvaro Fernandez wrote:
> Thanks for your reply and for your suggestions.
> 
> About the first question: i'll disable the rate limit. Anyway, how can i
> configure openvas in order to limit the connection rates (if it is
> possible)?
> 
> About the second question (authenticated sessions): any suggestion?

see the following posting from just a few hours ago:

http://lists.wald.intevation.org/pipermail/openvas-discuss/2017-June/011160.html

> Thanks
> Alvaro

Regards,

--

Christian Fischer | PGP Key: 0x54F3CE5B76C597AD
Greenbone Networks GmbH | http://greenbone.net
Neumarkt 12, 49074 Osnabrück, Germany | AG Osnabrück, HR B 202460
Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner

> On Thu, Jun 15, 2017 at 8:38 PM, Reindl Harald  > wrote:
> 
> 
> 
> Am 15.06.2017 um 20:16 schrieb Alvaro Fernandez:
> 
> Hi all,
> i'm trying to perform an OpenVAS scan on a target with stateful
> ip-tables rules able to limit the maximum number of new
> connections at 2/sec.
> I've tried to perform a scan without any result: how can i setup
> openvas to perform a scan with a rate equal or less than 2
> connections per second?
> 
> 
> you need to disable rate-limits for the scanner IP and not only for
> OpenVAS, you also fail security audtits from external comapnies when
> not doing so - even if you could manage openvas not exceed it you
> won#t live long enough to get the tests finished
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> 
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
> 
> 
> 
> 
> 
> 
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
> 
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Scan a firewalled target

2017-06-15 Thread Alvaro Fernandez 
Thanks for your reply and for your suggestions.

About the first question: i'll disable the rate limit. Anyway, how can i
configure openvas in order to limit the connection rates (if it is
possible)?

About the second question (authenticated sessions): any suggestion?

Thanks
Alvaro

On Thu, Jun 15, 2017 at 8:38 PM, Reindl Harald 
wrote:

>
>
> Am 15.06.2017 um 20:16 schrieb Alvaro Fernandez:
>
>> Hi all,
>> i'm trying to perform an OpenVAS scan on a target with stateful ip-tables
>> rules able to limit the maximum number of new connections at 2/sec.
>> I've tried to perform a scan without any result: how can i setup openvas
>> to perform a scan with a rate equal or less than 2 connections per second?
>>
>
> you need to disable rate-limits for the scanner IP and not only for
> OpenVAS, you also fail security audtits from external comapnies when not
> doing so - even if you could manage openvas not exceed it you won#t live
> long enough to get the tests finished
> ___
> Openvas-discuss mailing list
> Openvas-discuss@wald.intevation.org
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
>
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Scan a firewalled target

2017-06-15 Thread Reindl Harald 



Am 15.06.2017 um 20:16 schrieb Alvaro Fernandez:

Hi all,
i'm trying to perform an OpenVAS scan on a target with stateful 
ip-tables rules able to limit the maximum number of new connections at 
2/sec.
I've tried to perform a scan without any result: how can i setup openvas 
to perform a scan with a rate equal or less than 2 connections per second?


you need to disable rate-limits for the scanner IP and not only for 
OpenVAS, you also fail security audtits from external comapnies when not 
doing so - even if you could manage openvas not exceed it you won#t live 
long enough to get the tests finished

___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

[Openvas-discuss] Scan a firewalled target

2017-06-15 Thread Alvaro Fernandez 
Hi all,
i'm trying to perform an OpenVAS scan on a target with stateful ip-tables
rules able to limit the maximum number of new connections at 2/sec.
I've tried to perform a scan without any result: how can i setup openvas to
perform a scan with a rate equal or less than 2 connections per second?

Another question: my target supports ssh and i know user and password.
I wanted to perform an authenticated session: openvas is able to
perform a successful
connection but i don't see any result (and the target is not perfect :) ).
Maybe inserting user and password in ssh credential is not sufficient to
perform a scan from the inside?

Thanks
Alvaro
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss