Re: [Openvas-discuss] Openvas hardening?

Just apply cis 1 or cis 2 level hardening? Please note that some hardening like selinux might break openvas.. Eero On Tue, Sep 18, 2018 at 1:29 PM Erdian Spaho wrote: > Hello to all, > > As openvas is a vurnerability scann and of course this nreds to be a > trusted machine from security point

Re: [Openvas-discuss] Is there a way to insert highest vulnerability level into subject of alert?

Well. Use omp client to pull reports and add some headers? Eero ma 17. syysk. 2018 klo 19.45 Allyn Baskerville kirjoitti: > We have a few hosts that are critical, and we want to manage them > separately from other lesser critical hosts. Right now, if there is a CVSS > score of 5 or higher, we

Re: [Openvas-discuss] Best os and method to install openvas?

centos 7 + atomic repo works for me. ma 17. syysk. 2018 klo 22.07 Erdian Spaho kirjoitti: > Dear all, > > Can anyone who had experience wich is the best os and method of installing > openvas, as i have seen many methods and repos about this. > > Regards >

Re: [Openvas-discuss] openvassd failed

; > T: +31(0)299476185 | M: +31(0)624366778 > > PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/) > > Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048 > > > > W: https://www.internedservices.nl | L: > https://nl.linkedin.com/in/thijsstuurman > > &

Re: [Openvas-discuss] openvassd failed

you need to configure redis to listen that socket.. to 30. elok. 2018 klo 23.06 Aécio Meneses kirjoitti: > Hi! > > I did installation of OpenVAS in the CentOS 7.5 follow the instructions of > OpenVAS’s site. > But, I dont get execute the New Task, because appers the following errors: > >-

Re: [Openvas-discuss] Openvas Setup

Sounds like you need to ask firewall administrator to open rsync port to feed.openvas.org tcp/873 Eero On Mon, Aug 6, 2018 at 10:33 AM Wong Peter wrote: > Dear All, > > I tried to setup Openvas but it failed to grab the feed update using > openvas-feed-update command. The error is connection

Re: [Openvas-discuss] When I run sudo systemctl start openvas-scanner - the system times out

and what is output that -xe command and output to logs? ma 9. heinäk. 2018 klo 20.18 Lance M. Caven kirjoitti: > I commented these out, the three lines with save are no longer there. > > The same issue continues > sudo service openvas-scanner start > Job for openvas-scanner.service failed

Re: [Openvas-discuss] Oracle Linux vulnerabilities past 2016

f 'yum check-update' > in place of openvas. Can still use openvas for non-authenticated remote > scans. > > For completeness, will plan to look up details of the extra remote checks > that Nessus does. > > Cheers, > Ewae. > > On Monday, 11 June 2018, Eero Volotinen wrote: &

Re: [Openvas-discuss] Oracle Linux vulnerabilities past 2016

t; Do all the community feeds work by checking only version numbers? If so, > I think this would help me make a stronger case to get funding for Nessus. > > Cheers, > Ewae. > > On Saturday, 9 June 2018, Eero Volotinen wrote: > >> Well. I think that checking only version numbers

Re: [Openvas-discuss] Oracle Linux vulnerabilities past 2016

pproaches to managing vulnerability assessment > on Oracle Linux? > > Cheers, > Ewae. > > On Friday, 8 June 2018, Eero Volotinen wrote: > >> Hi, >> >> I "was" developer of that feed :) >> >> I haven't updated it for while, due to lack

Re: [Openvas-discuss] Oracle Linux vulnerabilities past 2016

Hi, I "was" developer of that feed :) I haven't updated it for while, due to lack of time and/or sponsor ;) Eero pe 8. kesäk. 2018 klo 17.59 Ewae Rpok kirjoitti: > Hello all. > > Can anyone advise on scanning Oracle Linux vulnerabilities? > The Community feed seems to omit checks for errata

Re: [Openvas-discuss] Offline sync

You need to rsync files from online host to removable storage and then r(e)sync to offline machine + rebuild database. Eero On Thu, Mar 29, 2018 at 2:59 AM, aditya pratti wrote: > Hi, > > I have installed OpenVAS 9 on Ubuntu 16 with With OpenVAS Manager version >

Re: [Openvas-discuss] Display-Problem with OpenVas on Raspberry

erboard. Ran a bit slow but > worked perfectly. GUI and all. > > Louis > : > Louis Bohm - Sr. Systems Engineer > Dell TechDirect Certified > > On Mar 19, 2018, at 10:56 AM, Eero Volotinen <eero.voloti...@iki.fi> > wrote: > > I think your rasperry is ru

Re: [Openvas-discuss] Display-Problem with OpenVas on Raspberry

I think your rasperry is running out of memory. install openvas on "bigger" machine.. -- Eero On Sat, Mar 17, 2018 at 7:57 PM, Rainer W. Gerling wrote: > Hello > > I am running as a test and teaching setup OpenVas on a Raspberry PI. I > have a Debian Jessie installed. > > I

Re: [Openvas-discuss] how to minimize harm when introducing vuln scanning to a network

I usually prefer lower scan speed as too intensive can crash firewall devices.. Eero 14.3.2018 22.01 "TJ" kirjoitti: > I would exclude networked printers as the scans can cause them to produce > volumes of printed gibberish (found out the hard way) > > Yes, definitely scan

Re: [Openvas-discuss] how to minimize harm when introducing vuln scanning to a network

well. it depends on scan settings. on wrong settings it can dos/crash your systems or network devices.. Eero 14.3.2018 21.53 "Peter Collins" kirjoitti: > (Sorry if this is a repost. I had a technical issue with my first attempt) > > I would like to use OSSIM's OpenVAS

Re: [Openvas-discuss] Installing OpenVAS in CentOS 7 VM

do you have enought ram in vm? Eero 25.2.2018 23.04 "Jerry Lotto" kirjoitti: > Running around in circles. Removed, replaced, reinstalled, downgraded 8 / > upgraded 9. Everything leads to this: > > > > Checking OpenVAS Manager database (NVT data) ... > > ERROR:

Re: [Openvas-discuss] R: OpenVAS VM - No option to print PDFs

You need to install some missing package. DemoVM is not intended for production use. Eero 2018-01-31 17:09 GMT+02:00 Luca Racca : > Same issue for me. > > Seems to be an appliance issue. I didn’t find any solution. > > If someone can help will be very appreciate. > >

Re: [Openvas-discuss] Amazon nvt

Hi, I wrote that parser code years ago. (looks like it was year 2015) It mainly grabs https://alas.aws.amazon.com and generates nasl files from annoucements. .. after that files must be commited to openvas-nvt feed.. -- Eero 2018-01-25 20:21 GMT+02:00 Andy Goldschmidt

Re: [Openvas-discuss] Issue with mailing 'CSV Results' in OpenVAS8

ad in CSV format from the WebUI. Where is this > generate(.sh) script? > > On Tue, Dec 26, 2017 at 10:56 AM, Eero Volotinen <eero.voloti...@iki.fi> > wrote: > >> Well, is the csv results working from web-gui? if not, then some tool >> might be missing. >&g

Re: [Openvas-discuss] Issue with mailing 'CSV Results' in OpenVAS8

Well, is the csv results working from web-gui? if not, then some tool might be missing. There is generate(.sh) script that is used to generate csv result in (file)system. check if it works and all needed commands are installed in the os. Eero 2017-12-26 17:38 GMT+02:00 None

Re: [Openvas-discuss] Greenbone VM cannot sync feeds

Hi, You need to use NAT with port forward or bridged net interface Eero 29.8.2017 7.31 ip. "Rishi Kumar" kirjoitti: > Hello Everyone, > > I have just installed Greenbone OS 4.0 on Windows 10 host and virtualbox. > I am able to access web interface only if i select "host

Re: [Openvas-discuss] Scans stop at 1%

main: INFO:2017-08-28 18h32.41 utc:5472:Updating NVT cache. > > md main:WARNING:2017-08-28 18h48.19 utc:5472: openvas_scanner_read: > Failed to read from scanner: Connection reset by peer > > > > *From:* eero.t.voloti...@gmail.com [mailto:eero.t.voloti...@gmail.com] *O

Re: [Openvas-discuss] Scans stop at 1%

[Mon Aug 28 13:11:52 2017][3090] Failed to initialize nvti cache. > > > > How can I determine what is going on with my scanner? I’d like to avoid > rebuilding the entire system. > > > > Thank you very much in advance, > > Trent > > > > *From:* eero.t.voloti...

Re: [Openvas-discuss] Scans stop at 1%

check out that redis is configured and working. Eero 2017-08-28 5:14 GMT+03:00 Trent Townsend < trent_towns...@nextstepinnovation.com>: > I know this has been asked many times over the years but I am at a loss. > I keep getting the scans “Stopped at 1%” message and I cannot find anywhere > in

Re: [Openvas-discuss] Broken dependency on Centos 7 amd64

Try adding epel repository and try then again? Eero 2017-08-25 16:07 GMT+03:00 Ivan Ristic : > Dear all > > > > The issue what i’ve reported on *Tue Aug 22 10:19:09 CEST 2017* still > exists but I’ve seen now there’s another version available. > > So I’ve tried to

Re: [Openvas-discuss] DSS PCI NVT family missing

> > Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048 > > > > W: https://www.internedservices.nl | L: http://nl.linkedin.com/in/ > thijsstuurman > > > > *Van:* Openvas-discuss [mailto:openvas-discuss-boun...@wald.intevation.org] > *Namens *Ahmad

Re: [Openvas-discuss] DSS PCI NVT family missing

all plugins are enabled > > > > > > Best Regards, > > > > *Ahmad Al Talafha* > > > > > > *From:* eero.t.voloti...@gmail.com [mailto:eero.t.voloti...@gmail.com] *On > Behalf Of *Eero Volotinen > *Sent:* Thursday, August 24, 2017 10:32 AM > *To:* Ahmad Al-

Re: [Openvas-discuss] DSS PCI NVT family missing

There is no such as PCI family in openvas. For internal PCI scanning you need to enable all plugins and scan all tcp ports. Eero 2017-08-24 10:07 GMT+03:00 Ahmad Al-Talafha : > Dears, > > > > Hope this mail finds you well > > > > I am using openvas Version 7.0.2,

Re: [Openvas-discuss] Keep report after deleting task

6698950 <+49%20163%206698950> >> >> christian.eb...@qsc.de >> >> http://www.qsc.de >> >> >> >> Besuchen Sie unsere Blogs: >> Corporate Blog unter *http://blog.qsc.de <http://blog.qsc.de/>* >> Themen-Blog zur Digitalisierung

Re: [Openvas-discuss] Keep report after deleting task

e task they are linked to is not deleted. >> This is why I have to create tasks on each run, and doing it, delete also >> my reports. >> >> So I think I have to check the source code :(. >> >> Regards, >> Rémi >> >> 2017-07-26 16:58 GMT+02:00 Eero V

Re: [Openvas-discuss] Keep report after deleting task

) when I delete > the task. > > Regards, > Rémi. > > > 2017-07-26 16:44 GMT+02:00 Eero Volotinen <eero.voloti...@iki.fi>: > >> How about creating tasks with scripts and deleting old results after >> saving reports to disk? >> >> or creating ne

Re: [Openvas-discuss] Keep report after deleting task

How about creating tasks with scripts and deleting old results after saving reports to disk? or creating new task on each scan. Eero 2017-07-26 13:02 GMT+03:00 Rémi Liquete : > Hi, > > I'm creating a script based on PfSense Backup to create ports lists, > tagets and tasks

Re: [Openvas-discuss] Changing Certificates OpenVAS 8 / GSAD

I think you need to generate certificates and import to openvas manager also. see instructions at: https://hungred.com/how-to/openvas-503-service-temporarily-down/ Eero 2017-07-11 12:15 GMT+03:00 Niklas Klein : > Hello, > > I am trying to get GSAD to use a new key and

Re: [Openvas-discuss] OpenVas setup

Looks like redis is not correctly configured or not listening socket. For commercial support you need to contact greenbone: https://www.greenbone.net/en/ Eero 2017-07-17 13:10 GMT+03:00 Derek Jackson : > Hi, > > I'm trying to setup Openvas and it has failed twice

Re: [Openvas-discuss] Scans not executing

sounds like connection to redis it not working. Eero 23.6.2017 3.15 ip. "Harsh kapadia" kirjoitti: > Hi, > > Please see the attached output from openvas-check-setup.log file. > Everything seems OK but still the scans do not execute: > > I do still see the below errors in

Re: [Openvas-discuss] OpenVAS not scanning when check setup appears to be OK

gt; Dan > > 571.439.9230 > Sent from my mobile device, please excuse errors and brevity. > > On Jun 12, 2017 2:28 AM, Eero Volotinen <eero.voloti...@iki.fi> wrote: > > Scan can take long time depending on scan settings, network, firewall and > the scanner. > > run

Re: [Openvas-discuss] problem after compiling omp: libopenvas_omp.so.8

I think that dynamic linker does not find library. configure your ldpath .. Eero 2017-05-23 17:10 GMT+03:00 Brandon Perry : > > > On May 23, 2017, at 9:04 AM, Dehm, Jochen > wrote: > > > > I want to use a 2nd server to control my OpenVAS

Re: [Openvas-discuss] OpenVAS asks for nmap 5.5.1

Well, just skip that warning. Eero 2017-05-12 13:06 GMT+03:00 Rodolfo Peña : > Hi, All > > After installing OpenVAS and doing a check, I am warned that I have nmap > 7.1 installed and that I should have nmap 5.5.1. Is there no way to change > the version number of nmap that

Re: [Openvas-discuss] Openvas error

Does LC_ALL=C omp --verbose --get-tasks work ? Eero 2017-04-21 15:06 GMT+03:00 Dmitry Kutsanov : > Hello. Any idea what can I do with such error? > > #omp --verbose --get-tasks > > WARNING: Verbose mode may reveal passwords! > > Will try to connect to host localhost,

Re: [Openvas-discuss] Subscription based feed

check out greenbone.net Eero 14.4.2017 10.49 ip. "Joseph Wagner" kirjoitti: > Greetings all, > > I've been playing with OpenVAS for a while now and I'm loving it. Can > someone please tell me how I would purchase a subscription key for the more > up to date feed?

Re: [Openvas-discuss] [security - MiTM] piping http content to shell and downloading repo keys via HTTP

widbalut> > Founder of InfoSec Remedy <https://infosecremedy.blogspot.com/> > Blogger at dawidbalut.blogspot.com > > 2017-04-10 22:03 GMT+02:00 Eero Volotinen <eero.voloti...@iki.fi>: > >> well. piping shell script to rootshell is not safe even with https .. >

Re: [Openvas-discuss] [security - MiTM] piping http content to shell and downloading repo keys via HTTP

well. piping shell script to rootshell is not safe even with https .. Eero 2017-04-10 19:59 GMT+03:00 Dawid Bałut : > Hello Community, > > I noticed that on http://www.openvas.org/install-packages-v7.html we're > encouraging users to wget script from atomiccorp

Re: [Openvas-discuss] error: ‘GHmac’ undeclared

You are missing some development headers. Install them first. Eero 2017-04-07 6:08 GMT+03:00 wooyunceshi : > Hi， > > when i compile openvas-libraries-8.0.8 on Centos 6.7,some errors occur > > Scanning dependencies of target openvas_nasl_shared > [ 43%] Building C object

Re: [Openvas-discuss] Stuck with

Try with Linux. -- Eero 2017-04-06 8:55 GMT+03:00 Master Uxi : > Hello, greetings from California: been stuck trying to get this to work on > FreeBSD. Can't start or run successfully. Updated the ports tree to the > latest. > > > FreeBSD server.domain.com 10.3-RELEASE

Re: [Openvas-discuss] Openvas9 pdf report issue

I think openvas 9 is still using same way to generate raports. Check out generate script under correct format specific directory? -- Eero 2017-03-27 10:19 GMT+03:00 Yan Qian : > Resend with title correction. > > > I have the same issue, openvas v9 on CentOS 7, upgraded

Re: [Openvas-discuss] OPENVAS-CLI - OMP for MS Windows?

How about some scripting and running cli via ssh on linux machine? Eero 2017-03-13 11:12 GMT+02:00 Andrea M. : > Hi All, > > I'm currenlty using some Excel spreadsheets in order to manage my OpenVAS8 > landscape. These spreadsheets interact with OpenVAS using a

Re: [Openvas-discuss] openvas-scapdata-sync behind a proxy

if you really want to workaround company firewalls.. then just set squid on cloud and tunnel traffic to it via ssh. Eero 2017-03-08 17:14 GMT+02:00 Vito Logrillo <vito...@gmail.com>: > 2017-03-08 16:07 GMT+01:00 Eero Volotinen <eero.voloti...@iki.fi>: > >>

Re: [Openvas-discuss] openvas-scapdata-sync behind a proxy

You firewall and proxy is not allowing outbound rsync connections. How about asking from firewall admin? Eero 2017-03-08 16:59 GMT+02:00 Vito Logrillo : > Thanks for your reply > i've tried > > export RSYNC_PROXY="usr:pass@proxy:port" > openvas-scapdata-sync > > without any

Re: [Openvas-discuss] openvas-scapdata-sync behind a proxy

set RSYNC_PROXY and try without --wget switch :) .. or fix your firewall.. Eero 2017-03-08 15:11 GMT+02:00 Vito Logrillo : > Hi, > i've tried to start openvas-scapdata-sync command, but i'm begind a proxy > and it doesn't work. > I've tried the following command: > >

Re: [Openvas-discuss] Problem with compiling openvas-manager-5.0.5

so, what is the problem? Eero 2017-03-07 22:35 GMT+02:00 JF_Gmail : > Hi, > > > I have the same problem. > Has this been solved somehow? > > Kind Regards, > Jan > > ___ > Openvas-discuss mailing list >

Re: [Openvas-discuss] Solaris10 report pam_krb5

is solaris lsc files updated anymore? That LSC is from year 2009 Eero 2017-03-06 12:20 GMT+02:00 ervingo : > Hello Antu, > > Vulnerability Detection Method > Details: Solaris update for pam_krb5.so.1 140130-09 (OID: > 1.3.6.1.4.1.25623.1.0.855675) > Version used:

Re: [Openvas-discuss] Newbie CLI question

Take look of config xml. it defines which nvts are enabled. I am not sure, if you can skip disables ones. -- Eero 2017-03-06 10:32 GMT+02:00 Dragonmaw : > Hello again Eero, > so i downloaded a custom config file using only one NVT, but that file is > 380kb long. A

Re: [Openvas-discuss] Noob question on authenticated scans

Anyway. Running against unsupported platform does not help much. -- Eero Ei viruksia. www.avast.com

Re: [Openvas-discuss] Noob question on authenticated scans

something else? > Thanks > > 2017-03-05 12:42 GMT+01:00 Eero Volotinen <eero.voloti...@iki.fi>: > >> autheticated scan requires usually supported platform. at this moment >> only major linux distributions are supported. >> >> Eero >> >>

Re: [Openvas-discuss] Noob question on authenticated scans

autheticated scan requires usually supported platform. at this moment only major linux distributions are supported. Eero 5.3.2017 1.33 ip. "Reindl Harald" kirjoitti: > > > Am 05.03.2017 um 11:58 schrieb Vito Logrillo: > >> Hi All, >> sorry for my noob question, but i'm

Re: [Openvas-discuss] Scan with remote slave "Internal Error"

t; *From:* eero.t.voloti...@gmail.com [mailto:eero.t.voloti...@gmail.com] *On > Behalf Of *Eero Volotinen > *Sent:* Friday, March 3, 2017 12:19 AM > *To:* Mark Spears <mspe...@gosolis.com> > *Cc:* openvas-discuss@wald.intevation.org > *Subject:* RE: [Openvas-discuss] Scan with remote

Re: [Openvas-discuss] Scan with remote slave "Internal Error"

t; *From:* eero.t.voloti...@gmail.com [mailto:eero.t.voloti...@gmail.com] *On > Behalf Of *Eero Volotinen > *Sent:* Thursday, March 2, 2017 11:52 PM > *To:* Mark Spears <mspe...@gosolis.com> > *Cc:* openvas-discuss@wald.intevation.org > *Subject:* Re: [Openvas-discuss] Scan with remote slave "I

Re: [Openvas-discuss] openvasmd reporting 9390 twice

no, openvas-check-setup is just a bit buggy script ;) Eero 3.3.2017 7.41 ap. "Mark Spears" kirjoitti: > This is the second time I have experienced this in about a week. When > running “openvas-check-setup”, we see the following in the results on a > remote slave: > >

Re: [Openvas-discuss] Scan with remote slave "Internal Error"

Sounds like problems with gnutls library. what linux os and version you are using? Eeo 3.3.2017 7.06 ap. "Mark Spears" kirjoitti: > We have several remote slaves installed. Two of them have experienced > issues recently. Both of them worked with a test host discovery scan

Re: [Openvas-discuss] Newbie CLI question

Er. You can take one config for example and generate similar with your perl program .. -- Eero 2017-03-02 14:40 GMT+02:00 Dragonmaw : > I have a list of certain NVT OID's that i want to have executed at > different times. Since it is around 50 NVT's, it sounds like a

Re: [Openvas-discuss] Newbie CLI question

You can create config in greenbone assistant and then just export it to file. Then just import it using omp commands .. -- Eero 2017-03-02 12:23 GMT+02:00 Dragonmaw : > Thank you Antu. > i learned something using these links, thank you. However, i apparently > need to

Re: [Openvas-discuss] secure offline sync process for many scanner systems

_campaign=sig-email_content=webmail> <#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2> 2017-02-28 6:14 GMT+02:00 Matthew Hall <mh...@mhcomputing.net>: > On Tue, Feb 28, 2017 at 06:04:16AM +0200, Eero Volotinen wrote: > > Take a look of source of and you will see that the

Re: [Openvas-discuss] secure offline sync process for many scanner systems

Take a look of source of "openvas-nvt-sync openvas-scapdata-sync openvas-certdata-sync" and you will see that they really do. Non-commercial feed is updated about once in a week and you can build own mirror servers and use rsync or other techniques to sync your internal openvas servers. Eero

Re: [Openvas-discuss] alert method scp not working

+1 Great! Eero 2017-02-23 22:20 GMT+02:00 Jochen Dehm : > Yes, that's right. The fingerprint is the problem. > > But with the user nobody is not so simple to implement. > > root@sv-openvas /tmp # su - nobody -s /bin/bash > No directory, Registration withHOME=/ > >

Re: [Openvas-discuss] alert method scp not working

try switching to nobody from root prompt "su - nobody -s /bin/bash" and then running the script ? that is the error or output. I suspect that ssh fingerprint is not added Eero 2017-02-22 23:28 GMT+02:00 Jochen Dehm : > ok, I added: > whoami >>/tmp/scp.log > > After a

Re: [Openvas-discuss] alert method scp not working

look owner of logfile to check for owner. You could add strace or bash -x logging for ssh commands or logfile. Maybe ssh fingerprint is not created on the script? Eero 22.2.2017 11.20 ip. "Jochen Dehm" kirjoitti: > Thanks for the hint. > > I thought everything ran

Re: [Openvas-discuss] alert method scp not working

is the csv export (download) working correclty from www gui? Eero 22.2.2017 11.20 ip. "Jochen Dehm" kirjoitti: > Thanks for the hint. > > I thought everything ran with root right because "ps -ef" delivers the > following output. > > root@sv-openvas ~/openvas8 # ps -ef |

Re: [Openvas-discuss] alert method scp not working

Well, application is not running with root access. Try writing log under /tmp/log ? Eero 22.2.2017 12.45 ap. "Jochen Dehm" kirjoitti: > I wanted to use the alert method scp, but found in the documentation very > few details. > > My first tests were depressing.No report

Re: [Openvas-discuss] Scan randomly reports dead target

check that you have enought memory on openvas machine and that redis is up & running Eero 2017-02-21 22:38 GMT+02:00 Lemp, Dustin : > Hey all, > > I have my Openvas server set up and everything is working great except for > one thing: Sometimes my scans stop shortly after

Re: [Openvas-discuss] Unable to Sync

It's a bit hard to see that modifying dns entry as bypassing any protections. I already assume that this person has permission to run openvas on company network. Eero 2017-02-20 15:19 GMT+02:00 Reindl Harald <h.rei...@thelounge.net>: > > > Am 20.02.2017 um 14:14 schrieb

Re: [Openvas-discuss] Unable to Sync

net>: > Hi, > > On 20.02.2017 14:07, Eero Volotinen wrote: > > install bzip2 and md5sum tools from package management and try again. > > in this case this won't help here. > > Please contact your network administrator about this issue. From the > output and the redire

Re: [Openvas-discuss] Unable to Sync

install bzip2 and md5sum tools from package management and try again. Eero 2017-02-20 14:50 GMT+02:00 system cambium : > Team, > > I have been trying to update library of openvas using "openvas-nvt-sync", > but unfortunately, it fails to update. > > Tried multiple

Re: [Openvas-discuss] Doubt

Then just disable keep alive check. Eero 2017-02-20 13:58 GMT+02:00 Shreyas M R : > nmap is giving me findings. ping is disabled to that machine redis is > ri=unning fine > > > > [image: --] > > Shreyas M R > [image: http://]about.me/shreyasmrs >

Re: [Openvas-discuss] Doubt

ask from firewall admin. Eero 2017-02-20 13:05 GMT+02:00 Shreyas M R : > Hi all, > > I have two machines which are located in different city but are connected > to same network. > I'm able to scan the machines with each other using nessus and when I use > openvas its

Re: [Openvas-discuss] Scanning Windows devices for vulns and/or missing patches

Is the SMB login really working. check from report? Eero 2017-02-19 11:31 GMT+02:00 Oliver Marshall : > Hi > > > Is there a plugin or feed we can use to help identify vulns in Windows > devices? Currently, despite having SMB credentials set up in OV, we seem to >

Re: [Openvas-discuss] Scan is not starting

try again to > restart OpenVAS redis db. > > Fábio > > No dia 13/02/2017, às 17:48, Eero Volotinen <eero.voloti...@iki.fi> > escreveu: > > yes, send the openvas logs, not the check setup log. > > try starting the scan and then send logs from openvas. >

Re: [Openvas-discuss] Scan is not starting

to > send any other logs? Please let me know. > > Thanks, > > > > Firuz > > > > > > *From: *<eero.t.voloti...@gmail.com> on behalf of Eero Volotinen < > eero.voloti...@iki.fi> > *Date: *Sunday, February 12, 2017 at 12:23 AM > *To:

Re: [Openvas-discuss] Scan is not starting

rting-tasks-after-reboot I see > the same problem but still no answer… > > > > Firuz > > > > > > > > *From: *<eero.t.voloti...@gmail.com> on behalf of Eero Volotinen < > eero.voloti...@iki.fi> > *Date: *Saturday, February 11, 2017 at 9:14 AM

Re: [Openvas-discuss] Scan is not starting

check out the logs. how software is installed and what is the linux platform that you are using? 2017-02-11 3:03 GMT+02:00 Firuz Dumlupinar - Vendor < firuz.dumlupi...@vudu.com>: > Hello, > > I have access the web interface of greenbone but when I start a scan the > web page hangs and doesn’t

Re: [Openvas-discuss] TCP ports not reported as open

--- > > portList += "," + j + closedPort; > > > How can I become a contributor to help fix the script (and/or any other > script in which I encounter bugs)? > > Thanks! > > Daniel > > > > > Daniel Popescu > 818-625-0823 > > On T

Re: [Openvas-discuss] TCP ports not reported as open

OS detections adds 5 random ports to commandline: http://plugins.openvas.org/nasl.php?oid=108021 -- Eero 2017-02-10 3:24 GMT+02:00 Dan ½ : > Hi folks, > > I'm encountering a strange issue wherein ports that I'm certain are open > are not being reported as open. I have a

Re: [Openvas-discuss] Fwd: md5sum error

A picture or error message is missing. I think you are missing some of these tools: zip, unzip, bzip2, md5sum. it's bug in atomic corp packaging.. Eero 2017-02-07 21:38 GMT+02:00 Tonya Tronco : > > -- Forwarded message -- > From: Tonya Tronco

Re: [Openvas-discuss] Problem starting gsa

I have seen this same problem on hardened machines with ipv6 stack "disabled" or half-disabled. I cannot remember how I fixed this issue. I think, I just modified gsa source to disable ipv6 binding. -- Eero 2017-01-31 13:33 GMT+02:00 Eero Volotinen <eero.voloti...@iki.fi>:

Re: [Openvas-discuss] Problem starting gsa

Is dualstack enabled on your system? Is ipv6 incorrectly disabled? For test, try to enable ipv6 and try again? -- Eero 2017-01-31 13:28 GMT+02:00 Corti Matteo (ID BD) : > Dear Christian > > Thanks for the hint but > > /usr/sbin/gsad --no-redirect --port=9392 --mport=9390

Re: [Openvas-discuss] How create Oracle scan config

ok. local or remote checks? Eero 27.1.2017 7.03 ip. "zen works" <zen.wo...@gmail.com> kirjoitti: > Hi Eero, > It's Oracle Linux. > > 2017-01-26 19:01 GMT+01:00 Eero Volotinen <eero.voloti...@iki.fi>: > >> oracle db? oracle linux? oracle what platfor

Re: [Openvas-discuss] Fresh install and problem with openvas-scapdata-sync

uy year > ago). > > Michal > > > > > > Michal Chrobak > IT Security Systems Engineer > tel. +48 22 122 09 42 > tel. +48 503 555 769From: eero.t.voloti...@gmail.com [mailto: > eero.t.voloti...@gmail.com] On Behalf Of Eero Volotinen > Sent: Friday, January 2

Re: [Openvas-discuss] Fresh install and problem with openvas-scapdata-sync

omit it? > > Michal > > > > > > Michal Chrobak > IT Security Systems Engineer > tel. +48 22 122 09 42 > tel. +48 503 555 769-Original Message- > From: Openvas-discuss [mailto:openvas-discuss-boun...@wald.intevation.org] > On Behalf Of Michal Chrobak > Se

Re: [Openvas-discuss] How create Oracle scan config

oracle db? oracle linux? oracle what platform? eero 26.1.2017 7.28 ip. "zen works" kirjoitti: > I try to create a scan to find only Oracle vulnerabilities. > I've already created a scan "full and fast" but the idea is to have only > Oracle vuln in my result. > I use

Re: [Openvas-discuss] Fresh install and problem with openvas-scapdata-sync

you need to add more ram memory to machine. Eero 26.1.2017 4.31 ip. "Michal Chrobak" kirjoitti: > Hi, > > Today I'm trying to install openvas. I downloaded Ubuntu Core 16.04 LTS > and install it on KVM virtual machine. Then I add new repository > (ppa:mrazavi/openvas

Re: [Openvas-discuss] OpenVAS 8 demo image contains expired certificates

It's sad to see that openvas demo image is non-working by default. Tennable and Nexpose provide working trial vm images by default and openvas should do the same. -- Eero 2017-01-24 12:27 GMT+02:00 Reindl Harald <h.rei...@thelounge.net>: > > > Am 24.01.2017 um 09:59 schrieb

[Openvas-discuss] OpenVAS 8 demo image contains expired certificates

How about rebuilding and releasing updated version with renewed openvas certificates? It's a bit bad feeling, if demo image does not work without tricks. -- Eero ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org

Re: [Openvas-discuss] Openvas on SuSE 42.1 Leap

you need to install tool(s) that are needed in pdf creation.. Eero 23.1.2017 12.15 ip. "System Admin" kirjoitti: > Hello Team, > > I have installed the openvas on SuSE - Leap 42.1 however, when I try to > scan the VM, it gives the zero bytes of pdf file. > > and

Re: [Openvas-discuss] Enquiry for OpenVAS Compliance

me. Wish God bless > you! :) > > > > Best Regards, > > Oscar > > > > > > > > *From:* eero.t.voloti...@gmail.com [mailto:eero.t.voloti...@gmail.com] *On > Behalf Of *Eero Volotinen > *Sent:* Monday, January 23, 2017 6:25 PM > *To:* Oscar Kwan >

Re: [Openvas-discuss] Can OpenVAS scan Wireless Devices

OpenVAS is not wireless AP scanning tool. You need to use netstumber or similar tools. I assume that you need to fullfill pci requirements? -- Eero 2017-01-23 11:55 GMT+02:00 Oscar Kwan : > Dear all > > > > I would like to ask if OpenVAS can scan the wireless device. Can

Re: [Openvas-discuss] Enquiry for OpenVAS Compliance

Hi, OpenVAS can fullfill PCI DSS requirements for internal scanning *). For external scanning ASV certified solution is required **). It's not about software, it's about certification and verified solution. Any other questions? *) note: pci dss: 11.2.3.c Validate that the scan was performed

Re: [Openvas-discuss] Problems with OpenVAS (long scan, scan stuck, demand for a lot of CPU cores)

try attaching strace to nmap.nasl process like this strace -f -p PID-of-process with root account. Eero 2017-01-16 12:02 GMT+02:00 : > Hi all! > > > > from long time ago in our company we use OpenVAS. Since few months we have > many different problems with this software. > > > >

Re: [Openvas-discuss] Openvas installation on Centos and SuSE has errors.

Try installing on centos 7. -- Eero 2017-01-05 14:09 GMT+02:00 System Admin : > [root@livecd ~]# cat /etc/redhat-release > CentOS release 6.8 (Final) > [root@livecd ~]# whoami > root > [root@livecd ~]# wget -q -O - http://www.atomicorp.com/installers/atomic > | sh > > Atomic

Re: [Openvas-discuss] OpenVAS Check for SSL Weak Ciphers

Well, TLSv1.2 is nowdays supported very well: https://en.wikipedia.org/wiki/Template:TLS/SSL_support_history_of_web_browsers It even works on IE. -- Eero 2016-12-22 13:36 GMT+02:00 Reindl Harald <h.rei...@thelounge.net>: > > > Am 21.12.2016 um 18:45 schrieb Eero Volotinen: &g

Re: [Openvas-discuss] OpenVAS Check for SSL Weak Ciphers

How about config like this: SSLProtocol ALL -SSLv2 -SSLv3 -TLSv1 -TLSv1.1 SSLHonorCipherOrder On SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:!aNULL:!MD5:!DSS Eero 2016-12-20 18:09 GMT+02:00 Madden, Joe : > Hi, > >

  1   2   3   4   5   6   >