Re: [Openvas-discuss] Openvas-Scanner Error: Connection reset by peer

2017-08-14 Thread Matthew Hall 
On Mon, Aug 14, 2017 at 09:12:33AM -0400, Nate Robinson wrote:
> anyone have any ideas as to what is causing this "connection reset by peer"
> error?

No specific idea. But I found in my case it was due to problems / missing GPG. 
It would try to call GPG in the middle of securing the local scan credentials, 
which would fail and sort of get dumped in /var/log.

Then when you tried to figure it out from the outside, the socket gets dropped 
when the process crashes.

I only figured it out by enabling the debug logging and scouring the output 
closely.

Matthew.
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss

Re: [Openvas-discuss] Openvas-discuss Digest, Vol 127, Issue 11

2017-08-14 Thread Christian Fischer 
Hi,

On 14.08.2017 20:29, Josemar Maso wrote:
> I'm sorry. Please, i sent the wrong log.
> Follow correct log.
> tks.
> 
> 2017-08-14 15:03 GMT-03:00 Josemar Maso  >:
> 
> 
> 
> 2017-08-14 14:54 GMT-03:00 Josemar Maso  >:
> 
> Follows attachment as resquested.
> tks
> Josemar MASO
> 
> 2017-08-12 7:00 GMT-03:00
>  >:
> 
> Send Openvas-discuss mailing list submissions to
> openvas-discuss@wald.intevation.org
> 
> 
> To subscribe or unsubscribe via the World Wide Web, visit
>
> 
> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
> 
> 
> 
> or, via email, send a message with subject or body 'help' to
> openvas-discuss-requ...@wald.intevation.org
> 
> 
> You can reach the person managing the list at
> openvas-discuss-ow...@wald.intevation.org
> 
> 
> When replying, please edit your Subject line so it is more
> specific
> than "Re: Contents of Openvas-discuss digest..."
> 
> 
> Today's Topics:
> 
>1. Adobe Fixes Critical Vulnerabilities (Antu Sanadi)
>2. Run Tasks Schedule in OpenVAS on CentOS7 (Josemar Maso)
>3. Problem with new install on Centos 7 [PUBLIC]
> (CAMPBELL Jeremy)
> 
> 
> 
> --
> Message: 2
> Date: Fri, 11 Aug 2017 15:01:05 -0300
> From: Josemar Maso  >
> To: openvas-discuss@wald.intevation.org
> 
> Subject: [Openvas-discuss] Run Tasks Schedule in OpenVAS on
> CentOS7
> Message-ID:
>
> 
>  >
> Content-Type: text/plain; charset="utf-8"
> 
> Hello Everyone,
> I have OPENVAS9 on CentOS7.
> See below error mensages in red.
> Any solution or advice on how to fix ?
> 
> thank you,
> 
> Josemar
> Brazil
> 
> ---
> [root@CentOS7 ~]# tail -f /var/log/openvas/openvasmd.log
> md manage:WARNING:2017-08-11 17h19.06 utc:20166: database
> must be
> initialised from scanner (with --update or --rebuild)
> md   main:MESSAGE:2017-08-11 17h19.07 utc:20167:OpenVAS
> Manager version
> 7.0.2 (DB revision 184)
> md   main:   INFO:2017-08-11 17h19.07 utc:20167:
> rebuild_nvt_cache_retry:
> Reloading NVT cache
> md   main:   INFO:2017-08-11 17h19.07 utc:20168:
> update_or_rebuild_nvt_cache: Updating NVT cache
> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Setting
> GnuPG dir to
> '/var/lib/openvas/openvasmd/gnupg'
> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Using
> OpenPGP engine
> version '2.0.22'
> md   main:   INFO:2017-08-11 17h19.07 utc:20168:Updating
> NVT cache.
> md   main:MESSAGE:2017-08-11 17h23.49 utc:20375:OpenVAS
> Manager version
> 7.0.2 (DB revision 184)
> md manage:   INFO:2017-08-11 17h23.49 utc:20375:Getting
> users.
> event schedule:MESSAGE:2017-08-11 14h25.53 -03:20764:
> Schedule diario
> (cb21b1b7-0d36-4355-ad56-ab2017fbecc1) has been created by admin
> event target:MESSAGE:2017-08-11 14h26.42 -03:20781: Target
> localhost
> (ea2b6c9a-6e76-41f5-8639-7a18a73295c2) has been created by admin
> event task:MESSAGE:2017-08-11 14h27.15 -03:20796: Status of task
> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has changed to New
> event task:MESSAGE:2017-08-11 14h27.16 -03:20796: Task localhost
> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has been created by admin
> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Task localhost
> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) could not be resumed
> by admin
>

Re: [Openvas-discuss] Openvas-discuss Digest, Vol 127, Issue 11

2017-08-14 Thread Josemar Maso 
I'm sorry. Please, i sent the wrong log.
Follow correct log.
tks.

2017-08-14 15:03 GMT-03:00 Josemar Maso :

>
>
> 2017-08-14 14:54 GMT-03:00 Josemar Maso :
>
>> Follows attachment as resquested.
>> tks
>> Josemar MASO
>>
>> 2017-08-12 7:00 GMT-03:00 :
>>
>>> Send Openvas-discuss mailing list submissions to
>>> openvas-discuss@wald.intevation.org
>>>
>>> To subscribe or unsubscribe via the World Wide Web, visit
>>> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/o
>>> penvas-discuss
>>>
>>> or, via email, send a message with subject or body 'help' to
>>> openvas-discuss-requ...@wald.intevation.org
>>>
>>> You can reach the person managing the list at
>>> openvas-discuss-ow...@wald.intevation.org
>>>
>>> When replying, please edit your Subject line so it is more specific
>>> than "Re: Contents of Openvas-discuss digest..."
>>>
>>>
>>> Today's Topics:
>>>
>>>1. Adobe Fixes Critical Vulnerabilities (Antu Sanadi)
>>>2. Run Tasks Schedule in OpenVAS on CentOS7 (Josemar Maso)
>>>3. Problem with new install on Centos 7 [PUBLIC] (CAMPBELL Jeremy)
>>>
>>>
>>> --
>>> Message: 2
>>> Date: Fri, 11 Aug 2017 15:01:05 -0300
>>> From: Josemar Maso 
>>> To: openvas-discuss@wald.intevation.org
>>> Subject: [Openvas-discuss] Run Tasks Schedule in OpenVAS on CentOS7
>>> Message-ID:
>>> >> ail.com>
>>> Content-Type: text/plain; charset="utf-8"
>>>
>>> Hello Everyone,
>>> I have OPENVAS9 on CentOS7.
>>> See below error mensages in red.
>>> Any solution or advice on how to fix ?
>>>
>>> thank you,
>>>
>>> Josemar
>>> Brazil
>>>
>>> ---
>>> [root@CentOS7 ~]# tail -f /var/log/openvas/openvasmd.log
>>> md manage:WARNING:2017-08-11 17h19.06 utc:20166: database must be
>>> initialised from scanner (with --update or --rebuild)
>>> md   main:MESSAGE:2017-08-11 17h19.07 utc:20167:OpenVAS Manager
>>> version
>>> 7.0.2 (DB revision 184)
>>> md   main:   INFO:2017-08-11 17h19.07 utc:20167: rebuild_nvt_cache_retry:
>>> Reloading NVT cache
>>> md   main:   INFO:2017-08-11 17h19.07 utc:20168:
>>> update_or_rebuild_nvt_cache: Updating NVT cache
>>> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Setting GnuPG dir to
>>> '/var/lib/openvas/openvasmd/gnupg'
>>> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Using OpenPGP engine
>>> version '2.0.22'
>>> md   main:   INFO:2017-08-11 17h19.07 utc:20168:Updating NVT cache.
>>> md   main:MESSAGE:2017-08-11 17h23.49 utc:20375:OpenVAS Manager
>>> version
>>> 7.0.2 (DB revision 184)
>>> md manage:   INFO:2017-08-11 17h23.49 utc:20375:Getting users.
>>> event schedule:MESSAGE:2017-08-11 14h25.53 -03:20764: Schedule diario
>>> (cb21b1b7-0d36-4355-ad56-ab2017fbecc1) has been created by admin
>>> event target:MESSAGE:2017-08-11 14h26.42 -03:20781: Target localhost
>>> (ea2b6c9a-6e76-41f5-8639-7a18a73295c2) has been created by admin
>>> event task:MESSAGE:2017-08-11 14h27.15 -03:20796: Status of task
>>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has changed to New
>>> event task:MESSAGE:2017-08-11 14h27.16 -03:20796: Task localhost
>>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has been created by admin
>>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Task localhost
>>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) could not be resumed by admin
>>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Status of task
>>> localhost
>>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has changed to Requested
>>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Task localhost
>>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has been requested to start by
>>> admin
>>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: sql_prepare_internal:
>>> sqlite3_prepare failed: near "(": syntax error
>>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: init_iterator:
>>> sql_prepare
>>> failed
>>> md manage:WARNING:2017-08-11 14h30.23 -03:20838:
>>> manage_cleanup_process_error: Error exit, setting running task to
>>> Internal
>>> Error
>>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: sql_prepare_internal:
>>> sqlite3_prepare failed: near "(": syntax error
>>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: init_iterator:
>>> sql_prepare
>>> failed
>>> ---
>>>
>>> [root@CentOS7 ~]# openvas-check-setup --v9
>>> openvas-check-setup 2.3.7
>>>   Test completeness and readiness of OpenVAS-9
>>>
>>>   Please report us any non-detected problems and
>>>   help us to improve this check routine:
>>>   http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
>>>
>>>   Send us the log-file (/tmp/openvas-check-setup.log) to help analyze the
>>> problem.
>>>
>>>   Use the parameter --server to skip checks for client tools
>>>   like GSD and OpenVAS-CLI.
>>>
>>

Re: [Openvas-discuss] Openvas-discuss Digest, Vol 127, Issue 11

2017-08-14 Thread Josemar Maso 
2017-08-14 14:54 GMT-03:00 Josemar Maso :

> Follows attachment as resquested.
> tks
> Josemar MASO
>
> 2017-08-12 7:00 GMT-03:00 :
>
>> Send Openvas-discuss mailing list submissions to
>> openvas-discuss@wald.intevation.org
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/o
>> penvas-discuss
>>
>> or, via email, send a message with subject or body 'help' to
>> openvas-discuss-requ...@wald.intevation.org
>>
>> You can reach the person managing the list at
>> openvas-discuss-ow...@wald.intevation.org
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of Openvas-discuss digest..."
>>
>>
>> Today's Topics:
>>
>>1. Adobe Fixes Critical Vulnerabilities (Antu Sanadi)
>>2. Run Tasks Schedule in OpenVAS on CentOS7 (Josemar Maso)
>>3. Problem with new install on Centos 7 [PUBLIC] (CAMPBELL Jeremy)
>>
>>
>> --
>> Message: 2
>> Date: Fri, 11 Aug 2017 15:01:05 -0300
>> From: Josemar Maso 
>> To: openvas-discuss@wald.intevation.org
>> Subject: [Openvas-discuss] Run Tasks Schedule in OpenVAS on CentOS7
>> Message-ID:
>> > ail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Hello Everyone,
>> I have OPENVAS9 on CentOS7.
>> See below error mensages in red.
>> Any solution or advice on how to fix ?
>>
>> thank you,
>>
>> Josemar
>> Brazil
>>
>> ---
>> [root@CentOS7 ~]# tail -f /var/log/openvas/openvasmd.log
>> md manage:WARNING:2017-08-11 17h19.06 utc:20166: database must be
>> initialised from scanner (with --update or --rebuild)
>> md   main:MESSAGE:2017-08-11 17h19.07 utc:20167:OpenVAS Manager
>> version
>> 7.0.2 (DB revision 184)
>> md   main:   INFO:2017-08-11 17h19.07 utc:20167: rebuild_nvt_cache_retry:
>> Reloading NVT cache
>> md   main:   INFO:2017-08-11 17h19.07 utc:20168:
>> update_or_rebuild_nvt_cache: Updating NVT cache
>> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Setting GnuPG dir to
>> '/var/lib/openvas/openvasmd/gnupg'
>> base gpgme:MESSAGE:2017-08-11 17h19.07 utc:20168: Using OpenPGP engine
>> version '2.0.22'
>> md   main:   INFO:2017-08-11 17h19.07 utc:20168:Updating NVT cache.
>> md   main:MESSAGE:2017-08-11 17h23.49 utc:20375:OpenVAS Manager
>> version
>> 7.0.2 (DB revision 184)
>> md manage:   INFO:2017-08-11 17h23.49 utc:20375:Getting users.
>> event schedule:MESSAGE:2017-08-11 14h25.53 -03:20764: Schedule diario
>> (cb21b1b7-0d36-4355-ad56-ab2017fbecc1) has been created by admin
>> event target:MESSAGE:2017-08-11 14h26.42 -03:20781: Target localhost
>> (ea2b6c9a-6e76-41f5-8639-7a18a73295c2) has been created by admin
>> event task:MESSAGE:2017-08-11 14h27.15 -03:20796: Status of task
>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has changed to New
>> event task:MESSAGE:2017-08-11 14h27.16 -03:20796: Task localhost
>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has been created by admin
>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Task localhost
>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) could not be resumed by admin
>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Status of task localhost
>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has changed to Requested
>> event task:MESSAGE:2017-08-11 14h30.13 -03:20836: Task localhost
>> (ad2dd79e-cf4d-45a3-8b06-c23a237aec45) has been requested to start by
>> admin
>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: sql_prepare_internal:
>> sqlite3_prepare failed: near "(": syntax error
>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: init_iterator:
>> sql_prepare
>> failed
>> md manage:WARNING:2017-08-11 14h30.23 -03:20838:
>> manage_cleanup_process_error: Error exit, setting running task to Internal
>> Error
>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: sql_prepare_internal:
>> sqlite3_prepare failed: near "(": syntax error
>> md manage:WARNING:2017-08-11 14h30.23 -03:20838: init_iterator:
>> sql_prepare
>> failed
>> ---
>>
>> [root@CentOS7 ~]# openvas-check-setup --v9
>> openvas-check-setup 2.3.7
>>   Test completeness and readiness of OpenVAS-9
>>
>>   Please report us any non-detected problems and
>>   help us to improve this check routine:
>>   http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
>>
>>   Send us the log-file (/tmp/openvas-check-setup.log) to help analyze the
>> problem.
>>
>>   Use the parameter --server to skip checks for client tools
>>   like GSD and OpenVAS-CLI.
>>
> ---
Follows attachment as requesed.
tks.
openvas-check-setup 2.3.7
  Mode:  server
  Date:  Mon, 14 Aug 2017 18:02:25 -0300

Checking for old OpenVAS Scanner <= 2.0 ...
/usr/bin/openvas-check-setup: 184: /usr/bin/openvas-check-setup: openvasd: not found

Re: [Openvas-discuss] Openvas-Scanner Error: Connection reset by peer

2017-08-14 Thread Nate Robinson 
anyone have any ideas as to what is causing this "connection reset by peer"
error?

On Wed, Aug 9, 2017 at 1:53 PM, Nate Robinson  wrote:

> Shameless self-bump
>
> On Mon, Aug 7, 2017 at 1:57 PM, Nate Robinson  wrote:
>
>> Greetings!
>>
>>
>> I am having an issue with my Openvas installation. Any tasks that I
>> launch from Greenbone Security's GUI will change to the state "Requested",
>> then timeout and change to 'Completed' without ever starting. I'm at my
>> wit's end and am not sure what to try next. I'm going to provide as much
>> detail as I can and beg/plead for some guidance on how to proceed :D
>>
>> -I have OpenVAS running on a Centos 7 VM
>>
>> -Here is an example of the error message in the log:
>>
>> md   main:WARNING:2017-07-26 16h36.51 EDT:2423: openvas_scanner_read:
>> Failed to read from scanner: Connection reset by peer
>>
>>
>> -I'm running these versions:
>> *Manager:*
>> OpenVAS Manager 7.0.1
>> Manager DB revision 184
>>
>> *GSAD:*
>> Greenbone Security Assistant 7.0.2
>>
>> *Scanner:*
>> OpenVAS Scanner 5.1.1
>> Most new code since 2005: (C) 2016 Greenbone Networks GmbH
>>
>>
>> -Openvas-check-setup returns "It seems like your OpenVAS-9 installation
>> is OK"
>>
>> -Redis is active and ready to receive connections at /tmp/redis.sock
>>
>>
>> -SELinux is disabled, and iptables isn't blocking loopback (locally)
>>
>>
>>
>> -Checking to see if the processes exist and are running (I'm not sure why
>> there are two instances of gsad)
>>
>> $ ps aux | grep -i openvas
>> root  2313  0.3  0.8 367720 82280 ?SL   Jul26  10:33 openvasmd
>> root  2315  0.0  0.0 758568 10012 ?Sl   Jul26   0:07
>> /usr/sbin/gsad --listen 0.0.0.0 --port 9392 
>> --ssl-private-key=/var/ssl/openvas/MYHOST.key
>> --ssl-certificate=/var/ssl/openvas/20170313.MYHOST.crt --timeout 90
>> root  2316  0.0  0.0 250600  1756 ?Sl   Jul26   0:00
>> /usr/sbin/gsad --listen 0.0.0.0 --port 9392 
>> --ssl-private-key=/var/ssl/openvas/MYHOST.key
>> --ssl-certificate=/var/ssl/openvas/20170313.MYHOST.crt --timeout 90
>> root  5925  0.0  0.0 175356  6556 ?SLs  13:00   0:00
>> /usr/sbin/openvassd
>>
>>
>>
>> -Here are the results of `netstat -tulpn`:
>> Active Internet connections (only servers)
>> Proto Recv-Q Send-Q Local Address   Foreign Address State
>>   PID/Program name
>> tcp0  0 0.0.0.0:93920.0.0.0:*
>> LISTEN  2315/gsad
>> tcp0  0 0.0.0.0:80  0.0.0.0:*
>> LISTEN  2316/gsad
>> tcp0  0 0.0.0.0:22  0.0.0.0:*
>> LISTEN  1035/sshd
>> tcp0  0 127.0.0.1:250.0.0.0:*
>> LISTEN  2183/master
>> tcp6   0  0 :::22   :::*
>>  LISTEN  1035/sshd
>> tcp6   0  0 ::1:25  :::*
>>  LISTEN  2183/master
>>
>>
>> If there is any additional information that I should provide, please let
>> me know. Like I said before, I'm at the end of my rope as far as
>> ideas/fixes go, and would greatly appreciate some insight.
>>
>>
>> FWIW: It was working previously, and only recently (~1 month ago) noticed
>> the scans were no longer functioning
>>
>>
>> Thanks,
>>
>> -Nate
>>
>>
>
>
> --
> ---
> Nate Robinson
> 3ROX Engineer
> 412.268.9251 <(412)%20268-9251>
> n...@psc.edu
>



-- 
---
Nate Robinson
3ROX Engineer
412.268.9251
n...@psc.edu
___
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss