Hello
When I check a default scan configuration like Full and fast ultimate I
can't find the port_range option but other options like max_checks are
available. The port_range option is set in the file
/etc/openvas/openvassd.conf to default. I'm using the latest OpenVAS from
atomic repository on
I was really disappointed to see that even local checks on RHEL family do
not remove false positives -- though requesting package patchlevel is trivial.
Is there any effort to fix that ongoing?
___
Openvas-discuss mailing list
Le 05/10/2011 15:23, ArkanoiD a écrit :
I was really disappointed to see that even local checks on RHEL family do
not remove false positives -- though requesting package patchlevel is trivial.
And not only on RHEL : Ubuntu, Debian, CentOS ... :/
Is there any effort to fix that ongoing?
Which tests are tripping false positives? The local security checks
should not be tripping false positives, certainly not those that are
based on direct examination of rpms, dpkgs, etc.
Thomas
ArkanoiD wrote:
I was really disappointed to see that even local checks on RHEL family do
not remove
There'll definitely be an effort to resolve the FP's, if any, if more
information can be given like which patch you are referring, which NVT and what
is your target system.
Please report that in openvas-plugins.
Chandra
Sent from BlackBerry® on Airtel
-Original Message-
From: Thibaut
$ rpm -q libmicrohttpd
libmicrohttpd-0.9.7-1.el5.art
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
On Wednesday 05 October 2011 15:58:31 Thibaut PIRONNEAU wrote:
For example on an up to date CentOS 5.7, I have a lot of apache, php,
mysql alerts... But it's not a local scan. My scanner is on an other
machine, but in the same network.
an unauthenticated scan has always less information
$ rpm -q libmicrohttpd
libmicrohttpd-0.9.7-1.el5.art
Post to openvas-distro, the package maintainers are there.
--
Greenbone Networks GmbH
Neuer Graben 17, 49074 Osnabrueck, Germany | AG Osnabrueck, HR B 202460
Executive Directors: Lukas Grunwald, Dr. Jan-Oliver Wagner
So that's not a local security check. Local security checks are those
that are done by having had the ability to ssh directly into the box
in question, and grab the actual deployed RPMs/packages.
Are there false positives that are truly generated from local security
checks?
Thomas
Thibaut
Hi All,
I have OpenVas in CentOs installed. When I try to export the report in PDF
format, the OpenVas generate a file with 0 bytes.and when i run the
openvas-check-setup -server , the result is :
Step 9: Checking presence of optional tools ...
OK: pdflatex found.
WARNING:
Step 9: Checking presence of optional tools ...
OK: pdflatex found.
WARNING: PDF generation failed, most likely due to missing LaTeX
packages. The PDF report format will not work.
SUGGEST: Install required LaTeX packages.
Packets installed :
The Manager uses these
On Wednesday 05 October 2011 16:21:20 ArkanoiD wrote:
$ rpm -q libmicrohttpd
libmicrohttpd-0.9.7-1.el5.art
gsad is not causing the problem.
I guess this issue report belongs to the disto list.
Best
Jan
--
Dr. Jan-Oliver Wagner | ++49-541-335084-0 | http://www.greenbone.net/
12 matches
Mail list logo