Re: [Openvas-discuss] Migrate discussions to new platform

the whole "we migrate from mailing-lists to shithub and other platforms" grows like a cancer :-( Am 15.10.18 um 21:24 schrieb Jan-Oliver Wagner: > this is a reminder: > > Only 15 days to go until this mailing list is shut down. > > The community forum is already very active. > Lets meet there!

Re: [Openvas-discuss] openvas install installation not complete

Am 09.10.18 um 09:41 schrieb Christian Fischer: > On 04.10.2018 03:03, Joe Cummings wrote: >> I'm new to openvas and just performed an install. My redis-openvas >> directory appears to be missing, along with my redis-server.sock file. So, >> I can not start my redis-server. > > as this is an

Re: [Openvas-discuss] Migrate discussions to new platform

Am 16.09.18 um 00:49 schrieb Jan-Oliver Wagner: > We will shut down the openvas-discuss mailing list by October 31st 2018. > Everyone will be unsubscribed, but the archives will remain online. why do you migrate something when you are not capable to migrate?

Re: [Openvas-discuss] stupid connlimit 1 - Re: rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection refused

onnections on your server Am 01.09.18 um 14:58 schrieb Reindl Harald: > Am 01.09.18 um 00:48 schrieb Reindl Harald: >> Am 30.08.18 um 10:44 schrieb Reindl Harald: >>> rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection >>> refused >>> >>

[Openvas-discuss] stupid connlimit 1 - Re: rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection refused

Am 01.09.18 um 00:48 schrieb Reindl Harald: > Am 30.08.18 um 10:44 schrieb Reindl Harald: >> rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection >> refused >> >> and why? >> >> that obviosuly happened also end of last month >>

Re: [Openvas-discuss] rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection refused

Am 30.08.18 um 10:44 schrieb Reindl Harald: > rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection > refused > > and why? > > that obviosuly happened also end of last month > source: 91.118.73.100 are you kidding me? dfn-cert-2011.xml.asc

[Openvas-discuss] rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection refused

rsync: failed to connect to feed.openvas.org (89.146.224.58): Connection refused and why? that obviosuly happened also end of last month source: 91.118.73.100 --- [root@openvas:~]$ /usr/local/bin/openvas-sync OpenVAS community feed server - http://www.openvas.org/ This service is

Re: [Openvas-discuss] Failed to start LSB: remote network security auditor - scanner.

before increase the setting on otherwise perfectly working setup > Il giorno mer 29 ago 2018 alle ore 10:46 Reindl Harald > ha scritto: >> >> >> >> Am 29.08.2018 um 09:45 schrieb Davide: >>> Thank you; >>> In my / etc / systemd / system dire

Re: [Openvas-discuss] Failed to start LSB: remote network security auditor - scanner.

Am 29.08.2018 um 09:45 schrieb Davide: > Thank you; > In my / etc / systemd / system directory I never see > openvas-scanner.service but only greenbone-security-assistant.service > -> dev / null RTFM! /etc/systemd/systemd/ is for your own overrides and on any proper distribution you can

Re: [Openvas-discuss] Failed to start LSB: remote network security auditor - scanner.

Am 28.08.2018 um 17:30 schrieb Leonardo Lanzi: > On 08/28/2018 05:12 PM, Reindl Harald wrote: >> Am 28.08.2018 um 16:33 schrieb Studente di Ingegneria: >>> ● openvas-scanner.service - LSB: remote network security auditor - scanner >>> >>>    Loaded: loaded (/e

Re: [Openvas-discuss] Failed to start LSB: remote network security auditor - scanner.

Am 28.08.2018 um 16:33 schrieb Studente di Ingegneria: > I’m having issues with my OpenVAS9 machine running on Ubuntu 18.04.1 > LTS: the database is preventing the scanner from starting, as you can > see below: > > > ● openvas-scanner.service - LSB: remote network security auditor - scanner >

Re: [Openvas-discuss] SSL Certificates

Am 07.07.2018 um 19:39 schrieb Robert Fitzpatrick: > Reindl Harald wrote: >> openvassd.conf *is not* the admin GUI - it's that easy >> it's the scanner-daemon, the webui is gsad >> > > I wondered as I did think that was related to scanner, but it was the > only pla

Re: [Openvas-discuss] SSL Certificates

openvassd.conf *is not* the admin GUI - it's that easy it's the scanner-daemon, the webui is gsad Am 07.07.2018 um 18:03 schrieb Robert Fitzpatrick: > I tried to change the certificate for the admin GUI, key and ca file > with Let's Encrypt cert files but site keeps using the OpenVAS cert. I >

Re: [Openvas-discuss] No OpenVAS SCAP database found

receiving incremental file list rsync: opendir "/scap-download" (in scap-data) failed: Permission denied (13) IO error encountered -- skipping file deletion Am 17.05.2018 um 21:48 schrieb Xinhuan Zheng: > Hello, > > Today when I set up a brand new OpenVAS server on CentOS 7 system, after >

Re: [Openvas-discuss] Is too much power disruptive?

Am 25.04.2018 um 22:16 schrieb Peter Collins: > I'm currently scanning on a 4-core vm with 4gm ram, in Virtualbox on a > laptop, within OSSIM. Traffic average during a scan is about 4kB/s > (kiloBYTES). Network pipe is not the bottleneck. It can provide 20mb/s > (megaBITS) easily. If I get a

Re: [Openvas-discuss] Private or Corporate CAs

Am 11.04.2018 um 15:21 schrieb Alex Smirnoff: > On Tue, Apr 10, 2018 at 10:16:39PM +0200, Reindl Harald wrote: >> what the hell are you argue here? > > Show. Me. A. Real. Attack. Scenario. Where. It. Matters. > > Then I would fix. "Because OpenVAS does not like it&qu

Re: [Openvas-discuss] Private or Corporate CAs

(no need for a private copy) by silent > On Tue, Apr 10, 2018 at 05:16:43PM +0200, Reindl Harald wrote: >> >> >> Am 10.04.2018 um 17:12 schrieb Alex Smirnoff: >>> Could you elaborate an attack scenario that depends on root certificate >>> signature? &g

Re: [Openvas-discuss] Private or Corporate CAs

that time your infrastructure is crap because nobody gave a shit thinking about automated certificate replacement / deplyoment > On Mon, Apr 09, 2018 at 10:26:54AM +0200, Reindl Harald wrote: >> jesus add a override and you are done >> >> MD5/SHA1 certificates are shit an

Re: [Openvas-discuss] Private or Corporate CAs

relevant. But it is irrelevant for anything that is self-signed. > Isn't it obvious? > > On Thu, Mar 29, 2018 at 08:41:25PM +0200, Reindl Harald wrote: >> >> >> Am 29.03.2018 um 20:29 schrieb Alex Smirnoff: >>> Could you elaborate, exactly how weak hash could matter for self-sig

Re: [Openvas-discuss] "Are you dead?" Really?

the new enigmail autocrypt is a piece of shit in the thunerbird preview aithout anigmail you see only the large header with no scrollbars and only when you reply or open the message in a new window you can see the content Am 29.03.2018 um 20:29 schrieb Christian Fischer: Hi, On 29.03.2018

Re: [Openvas-discuss] Private or Corporate CAs

Am 29.03.2018 um 20:29 schrieb Alex Smirnoff: Could you elaborate, exactly how weak hash could matter for self-signed certificate? Without vague references like "if you don't want to trust the NSA and NIST". I do not see any of those organisations stating that weak hash is dangerous for a

Re: [Openvas-discuss] how to minimize harm when introducing vuln scanning to a network

to keep them happy and confident    that the scans will provide information without being disruptive. There is no one-size fits all.  Tailor it to the people that have a vested interest in what you do and why you do it, and you'll be in good shape. Thomas On 03/14/2018 04:43 PM, Reindl Harald wrote

Re: [Openvas-discuss] how to minimize harm when introducing vuln scanning to a network

Am 14.03.2018 um 21:06 schrieb Eero Volotinen: I usually prefer lower scan speed as too intensive can crash firewall devices.. if a security scan from a single node crashs your firewall device you should say "thank you" for konwing that this crap needs to be replaced ASAP real attackers

Re: [Openvas-discuss] Installing OpenVAS in CentOS 7 VM

Am 26.02.2018 um 14:03 schrieb Jerry Lotto: So one problem I found with the v9 install was the cron script to update plugins and nvts. It referenced /usr/sbin/openvas-nvt-sync which no longer exists. I changed it to greenbone-nvt-sync and now that works but the scanner still hangs up.

Re: [Openvas-discuss] openvas not getting installed

Am 17.02.2018 um 14:39 schrieb Christian Fischer: On 13.02.2018 14:48, Amit Bhatia wrote: I am trying to install Openvas but getting the attached error. The "ERROR" text shows your issue and the "FIX" shows what to do to solve this. Please consult the redis manpage/manual or the Kali Linux

Re: [Openvas-discuss] redis-server is nor tunning or listening onsocket: /var/run/redis/redis.sock

018 17:45 *To: *None <mailto:espressobean...@gmail.com> *Cc: *Reindl Harald <mailto:h.rei...@thelounge.net>; openvas-discuss@wald.intevation.org <mailto:openvas-discuss@wald.intevation.org> *Subject: *Re: [Openvas-discuss] redis-server is nor tunning or listening onsocket: /

Re: [Openvas-discuss] redis-server is nor tunning or listening on socket: /var/run/redis/redis.sock

Am 13.02.2018 um 18:38 schrieb Ayo Folorunso Agunbiade: I am receiving ERROR: redis-server is nor tunning or listening on socket: /var/run/redis/redis.sock FIX: You should start the redis-server or configure it to listen on socket: /var/run/redis/redis.sock what about set it in

Re: [Openvas-discuss] upgrade from openvas 6.0.11 to a newer version

Am 24.01.2018 um 15:21 schrieb OpenVAS User: I noticed that due to a bug I cannot schedule new scans in 2018 and this is apparently being fixed in a new release. How can I upgrade my openvas to a newer version, possibly the latest, or at least one that will allow me to run a new schedule?

[Openvas-discuss] spank.c

besides that there is a never triggered drop rule for source "224.0.0.0/4" i doubt "Your machine crashed when it received a TCP packet that were coming from a multicast address" because the machinbe is fine 0 0 DROP all -- eth1 * 224.0.0.0/4 0.0.0.0/0

Re: [Openvas-discuss] NFS Vulnerability issue

Am 13.12.2017 um 19:18 schrieb amit: Can anyone please help me finding the nfs vulnerability , my OpenVAS is working perfectly, all the plugins are loaded. its CentOS , i have stopped the  iptables  ,,, but then also not able to capture any vulnerability ,,, nfs is installed ...

Re: [Openvas-discuss] KALI 2017.1 - OPENVAS

Am 12.12.2017 um 15:37 schrieb Edgardo Ghibaudo: When I start OPENVAS (last version available from repository) on KALI 2017.1 with openvas-start command, I receive the following error on openvas-manager: *|openvas-manager.service never wrote its PID file. Failing.|* Do you know how to

[Openvas-discuss] !SUBJECT! Re: Openvas-discuss Digest, Vol 131, Issue 1

and don't write braindead mails with "Openvas-discuss Digest, Vol 131, Issue 1" as subject - if you are subscribed for digest mails you are supposed to be a silent lurker or at least when you really think you need to break threaing for everybody change the subject to something useful Am

Re: [Openvas-discuss] REDIS-SERVER SOCKET PROBLEM

er | Project Manager | Consultant BEng, DIC, MSc, MBA, IRCA Lead Auditor jesus explains a lot -Original Message- From: Παναγιώτης Λεόντιος [mailto:leonti...@ath.forthnet.gr] Sent: Sunday, November 26, 2017 10:37 AM To: 'Reindl Harald'; 'openvas-discuss@wald.intevation.org' Subject:

Re: [Openvas-discuss] REDIS-SERVER SOCKET PROBLEM

-server 127.0.0.1:0 -Original Message- From: Openvas-discuss [mailto:openvas-discuss-boun...@wald.intevation.org] On Behalf Of Reindl Harald Sent: Sunday, November 26, 2017 11:19 AM To: openvas-discuss@wald.intevation.org Subject: Re: [Openvas-discuss] REDIS-SERVER SOCKET PROBLEM * and *does

Re: [Openvas-discuss] REDIS-SERVER SOCKET PROBLEM

* and *does it run* or could it be crashed? * did you simply try to restart redis * did you raed your systemlogs (OOM killer and freinds maybe) http://www.catb.org/esr/faqs/smart-questions.html#beprecise Am 26.11.2017 um 07:14 schrieb Παναγιώτης Λεόντιος: Just after updated the openvas database

Re: [Openvas-discuss] updating openvas certificates

Am 20.11.2017 um 08:49 schrieb Ralph Schell [Bright]: Openvas 5.0 please. need instructions howto upgrade to some supported version or google in the archives, OpenVAS 5.0 is stoneold ___ Openvas-discuss mailing list

Re: [Openvas-discuss] openVAS Cookie stealer report email

n] (X11, U; OpenVAS 8.0.9)" 178.175.142.131 - - [07/Nov/2017:16:05:19 -0500] "GET /scripts/calendar.php?year=2004=foo=01 HTTP/1.1" 301 320 "-" "Mozilla/5.0 [en] (X11, U; OpenVAS 8.0.9)" 178.175.142.131 - - [07/Nov/2017:16:05:19 -0500] "GET /cgi-bin/calendar.php?year=2004=foo

Re: [Openvas-discuss] openVAS Cookie stealer report email

Am 07.11.2017 um 23:51 schrieb Paul A: Hi, recently I got an email with the subject, “Cookie stealer report “ I looked at my apache logs and notice a particular ip scanning my server at that time using OpenVAS which I had never heard of it before. Doing some research I found the mailing list

Re: [Openvas-discuss] upgrading openvas - missing nettle-3.2.2-el6.x86_64.rpm

Am 07.11.2017 um 10:24 schrieb Ralph Schell [Bright]: cannot upgrade openvas due to missing package. found one on rpmfind belonging to the fedora project, but wonder whether this is usable for centos 6 instead. Is it? upgrade from what packages? no you can't mix fedora packages with CentOS

Re: [Openvas-discuss] Unable to locate package openvas9

Am 05.11.2017 um 13:23 schrieb Ken Cho: I want to install OpenVAS 9 in my Ubuntu Server with my Orange Pi machine. My Orange Pi processor is Allwinner H3 (Quad-core Cortex™-A7). apt install sqlite3 apt install openvas9 However, it shows that "E: Unable to locate package openvas9", even "apt

Re: [Openvas-discuss] how to recreate/renew certificates in openvas 5.0

Am 06.11.2017 um 17:03 schrieb Ralph Schell: Question Do i need to recreate both server and client certs or only the client certs naturally both - they work togehter why don't you upgrade OpenVAS itself? with openVAs9 the joke that when all stuff is running on the same machine TCP to

Re: [Openvas-discuss] OpenVAS9 reboot and REDIS error message

Am 06.11.2017 um 16:44 schrieb None: During a reboot of my OpenVAS9 install, I received the following when 'openvas-scanner' tried to start on its own: Nov 06 10:28:41 openvas-01 systemd[1]: Starting LSB: remote network security auditor - scanner... Nov 06 10:28:41 openvas-01

Re: [Openvas-discuss] REDIS-SERVER ERROR

one minute -Original Message- From: Openvas-discuss [mailto:openvas-discuss-boun...@wald.intevation.org] On Behalf Of Reindl Harald Sent: Tuesday, October 31, 2017 6:45 PM To: Mailing-List openvas Subject: Re: [Openvas-discuss] REDIS-SERVER ERROR stay on-list! Am 31.10.2017 um 17:

Re: [Openvas-discuss] REDIS-SERVER ERROR

//www.freedesktop.org/software/systemd/man/tmpfiles.d.html -Original Message- From: Openvas-discuss [mailto:openvas-discuss-boun...@wald.intevation.org] On Behalf Of Reindl Harald Sent: Tuesday, October 31, 2017 6:24 PM To: openvas-discuss@wald.intevation.org Subject: Re: [Openvas-dis

Re: [Openvas-discuss] REDIS-SERVER ERROR

Am 31.10.2017 um 17:19 schrieb Παναγιώτης Λεόντιος: Please help me on this if you may. After a normal Kali Update and a Feed Update for my OpenVAS installation, while trying to start openvas services got an error message. Running check-setup got the following error message: *ERROR:

[Openvas-discuss] gsa: Warning: MHD_USE_THREAD_PER_CONNECTION must be used only with MHD_USE_INTERNAL_POLLING_THREAD. Flag MHD_USE_INTERNAL_POLLING_THREAD was added. Consider setting MHD_USE_INTERNAL_

may somebody regulary look at logs and fix such things? Warning: MHD_USE_THREAD_PER_CONNECTION must be used only with MHD_USE_INTERNAL_POLLING_THREAD. Flag MHD_USE_INTERNAL_POLLING_THREAD was added. Consider setting MHD_USE_INTERNAL_POLLING_THREAD explicitly.

Re: [Openvas-discuss] openvasmd don't start after upgrade

]$ openvas-manage-certs -a ERROR: certtool binary not found! Am 30.10.2017 um 14:39 schrieb Reindl Harald: Am 30.10.2017 um 14:34 schrieb Brandon Perry: On Oct 30, 2017, at 8:18 AM, Reindl Harald <h.rei...@thelounge.net> wrote: Am 30.10.2017 um 14:03 schrieb Reindl Harald: openvas-libraries-9

Re: [Openvas-discuss] openvasmd don't start after upgrade

Am 30.10.2017 um 14:34 schrieb Brandon Perry: On Oct 30, 2017, at 8:18 AM, Reindl Harald <h.rei...@thelounge.net> wrote: Am 30.10.2017 um 14:03 schrieb Reindl Harald: openvas-libraries-9.0.1-1.fc26.x86_64 openvas-manager-7.0.2-1.fc26.x86_64 openvas-cli-1.4.5-3.fc26.x86_64 openvas-gsa-7

Re: [Openvas-discuss] openvasmd don't start after upgrade

Am 30.10.2017 um 14:03 schrieb Reindl Harald: openvas-libraries-9.0.1-1.fc26.x86_64 openvas-manager-7.0.2-1.fc26.x86_64 openvas-cli-1.4.5-3.fc26.x86_64 openvas-gsa-7.0.2-2.fc26.x86_64 openvas-scanner-5.1.1-1.fc26.x86_64 it's not terrible helpful when a process exits with a error code

[Openvas-discuss] openvasmd don't start after upgrade

openvas-libraries-9.0.1-1.fc26.x86_64 openvas-manager-7.0.2-1.fc26.x86_64 openvas-cli-1.4.5-3.fc26.x86_64 openvas-gsa-7.0.2-2.fc26.x86_64 openvas-scanner-5.1.1-1.fc26.x86_64 it's not terrible helpful when a process exits with a error code and no message at all [root@openvas:/etc/sysconfig]$

Re: [Openvas-discuss] unsubscribe

the list-footer is for you too why are all this fools deleting welcome messages after subscribe somewhere and where is the common sense gone when mail "unsubscribe" to every other subscriber? Am 24.10.2017 um 11:50 schrieb Roefs, Joris: ___

[Openvas-discuss] report exceeds the maximum length of 1048576 characters

where is that configured? in the past that reports came for sure as attachments and the last months only that annoying "finished but i even don't tell you the treat-level" This email escalation is configured to attach report format 'HTML'. Full details and other report formats are available

Re: [Openvas-discuss] Greenbone VM cannot sync feeds

Am 30.08.2017 um 06:35 schrieb Rishi Kumar: Thank for quick response. Bridged network is not working. When I try to use NAT with Port forwarding, it ask for host and guest ports. I am not sure what to mention in these fields. please help me to configure this don't get me wrong but that

Re: [Openvas-discuss] OpenVAS Web Access

Am 06.07.2017 um 11:27 schrieb Wong, Peter (KUL-MBW): I try to access the openvas web from URL https://10.0.2.15 at Host OS but it is unreable. Anyone know how to access it from Host OS or Guest OS? http://www.catb.org/esr/faqs/smart-questions.html#beprecise

Re: [Openvas-discuss] Scan a firewalled target

Am 15.06.2017 um 20:16 schrieb Alvaro Fernandez: Hi all, i'm trying to perform an OpenVAS scan on a target with stateful ip-tables rules able to limit the maximum number of new connections at 2/sec. I've tried to perform a scan without any result: how can i setup openvas to perform a scan

Re: [Openvas-discuss] sql errors

Am 12.06.2017 um 15:38 schrieb Brandon Perry: On Jun 12, 2017, at 8:33 AM, Thijs Stuurman > wrote: No, never. These are also the kind of errors I never ever wish to see! If your data is still there, scan tasks

Re: [Openvas-discuss] No OpenVAS Manager database found

Am 06.06.2017 um 19:18 schrieb Gerhard Mourani: Hello, Some generic information about my environment. Linux CentOS 6.8 openvas-libraries version is 9.0.1 openvas-manger version is 7.0.1 openvas-scanner version is 5.1.1 openvas-gsa version is 7.0.2 OpenVAS compiled from source When I run the

Re: [Openvas-discuss] problem after compiling omp: libopenvas_omp.so.8

Am 23.05.2017 um 16:10 schrieb Brandon Perry: On May 23, 2017, at 9:04 AM, Dehm, Jochen wrote: I want to use a 2nd server to control my OpenVAS server via omp. After building openvas-libraries and openvas-cli from the source, I get the following error:

Re: [Openvas-discuss] [security - MiTM] piping http content to shell and downloading repo keys via HTTP

Am 10.04.2017 um 22:44 schrieb Dawid Bałut: If for shell script you have only one carrier which is the root trusted origin, you're eliminating the need for packages signing nonsense once you have the GPG keys you are even able to reject malformed packages from the "root trusted origin" in

Re: [Openvas-discuss] [security - MiTM] piping http content to shell and downloading repo keys via HTTP

Am 10.04.2017 um 22:03 schrieb Eero Volotinen: well. piping shell script to rootshell is not safe even with https .. download and execute them manually don't make things better nobody needs shell scripts to install release-rpms at all 2017-04-10 19:59 GMT+03:00 Dawid Bałut

Re: [Openvas-discuss] error: ‘GHmac’ undeclared

Am 07.04.2017 um 08:25 schrieb Eero Volotinen: You are missing some development headers. Install them first. amd consider a OS update - besides 6.7 at it's own is outdated why CentOS6 and *why in the world* type the words "./configure" or "make" as root in a terminal?

Re: [Openvas-discuss] OpenVAS-9 Source installation warnings

Am 09.03.2017 um 11:47 schrieb Helmut Koers: Hi all, not sure if this is the right list to ask ... When installing OpenVAS-9 from Source Code, "cmake .." creates a lot of warnings in openvas-smb 1.0.2 Is that something I need to care about? fine that you show us what warnings it creates to

Re: [Openvas-discuss] openvas-scapdata-sync behind a proxy

Am 08.03.2017 um 16:14 schrieb Vito Logrillo: 2017-03-08 16:07 GMT+01:00 Eero Volotinen >: You firewall and proxy is not allowing outbound rsync connections. How about asking from firewall admin? Not so simple... than ask your

Re: [Openvas-discuss] openvas-scapdata-sync behind a proxy

Am 08.03.2017 um 14:11 schrieb Vito Logrillo: i've tried to start openvas-scapdata-sync command, but i'm begind a proxy and it doesn't work. I've tried the following command: http_proxy="http://user:pass@proxy:port; openvas-scapdata-sync --wget but i obtain this response: Download of SCAP

Re: [Openvas-discuss] Noob question on authenticated scans

ually supported platform. at this moment only major linux distributions are supported. Eero 5.3.2017 1.33 ip. "Reindl Harald" <h.rei...@thelounge.net <mailto:h.rei...@thelounge.net>> kirjoitti: Am 05.03.201

Re: [Openvas-discuss] Noob question on authenticated scans

Am 05.03.2017 um 11:58 schrieb Vito Logrillo: Hi All, sorry for my noob question, but i'm trying to understand how security scans work. My target is a custom linux distribution on an IoT system: i can set-up an SSH connection but i can't download any package in a simple way. 1. To perform an

[Openvas-discuss] FP: Hillstone Software TFTP Write/Read Request Server Denial Of Service

well, i honestly doubt that on our reverse-proxy something is listening on UDP ports at all.. ___ Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp0 0 0.0.0.0:80 0.0.0.0:* LISTEN

Re: [Openvas-discuss] alert method scp not working

Am 23.02.2017 um 21:20 schrieb Jochen Dehm: Yes, that's right. The fingerprint is the problem. But with the user nobody is not so simple to implement. root@sv-openvas /tmp # su - nobody -s /bin/bash No directory, Registration withHOME=/ nobody@sv-openvas:/tmp$ scp -o HashKnownHosts=no

Re: [Openvas-discuss] unable to start services

Am 22.02.2017 um 17:28 schrieb Rishi Kumar: I have installed openvas successfully on LMDE2, and i was able to access greenbone admin login and logged in successfully. Next time i am trying to start services but unable to start and hence cannot access greenbone admin login screen. I installed

Re: [Openvas-discuss] Unable to Sync

S settings 2017-02-20 15:19 GMT+02:00 Reindl Harald <h.rei...@thelounge.net <mailto:h.rei...@thelounge.net>>: Am 20.02.2017 um 14:14 schrieb Eero Volotinen: sounds like client is using opendns for filtering? is it forced or manually configured? try rep

Re: [Openvas-discuss] Strange error extracting reports

Am 20.02.2017 um 15:18 schrieb Ebert, Christian: But with huge reports (the xml file is about 13 Mbytes) xmlstarlet crashes: -:2.10003842: xmlSAX2Characters: huge text node: out of memory surely, forgt openvas with less then 3 GB RAM right from the start

Re: [Openvas-discuss] Unable to Sync

Am 20.02.2017 um 14:14 schrieb Eero Volotinen: sounds like client is using opendns for filtering? is it forced or manually configured? try replacing with google dns 8.8.8.8 and try again. NO - when you work in a company you are *not* supposed to bypass your network admins and if you do so

Re: [Openvas-discuss] GSA crashes / OpenVAS hungs

to install the tools at your own, Kali is no magic, it's just a distribution -Original Message- *From*: Reindl Harald <h.rei...@thelounge.net <mailto:reindl%20harald%20%3ch.rei...@thelounge.net%3e>> *To*: openvas-discuss@wald.intevation.org <mailto:openvas-discuss@wald

Re: [Openvas-discuss] GSA crashes / OpenVAS hungs

Am 03.02.2017 um 16:04 schrieb tatooin: I can resume works for some times. But again, as soon as the load becomes significant, gsa crashes and openvassd becomes unresponsive. It's not a load problem are purging/restarting redis is the key. Apart from commenting out all save options in

Re: [Openvas-discuss] Problem starting gsa

next time mention your operating system and package versions https://bugzilla.redhat.com/show_bug.cgi?id=1416034 a new build is in testing and and then 0.9.52 should work too Am 31.01.2017 um 11:56 schrieb Corti Matteo (ID BD): give no output with the following entries in the log file

Re: [Openvas-discuss] Fresh install and problem with openvas-scapdata-sync

Am 27.01.2017 um 11:20 schrieb Michal Chrobak: I have my openvas installation on ubuntu which is virtual machine (hosted od arch and kvm) with vmdk disk. I check this disk with badblocks: user@openvas:~$ sudo poweroff Connection to 192.168.121.253 closed by remote host. Connection to

Re: [Openvas-discuss] OpenVAS 8 demo image contains expired certificates

Am 24.01.2017 um 09:59 schrieb Eero Volotinen: How about rebuilding and releasing updated version with renewed openvas certificates? It's a bit bad feeling, if demo image does not work without tricks. and what about making that damned certs in general valid for more than one year? on of the

Re: [Openvas-discuss] openvas hangs in 1%

Am 20.01.2017 um 13:20 schrieb googu hr: yes ,thanks ! and the next time mention your hardware-ressources unasked instead pretend "I am sure machine RAM is enough" and consider some linux basics like "dmesg" and look in the system logs where you cleraly can see OOM killer events

Re: [Openvas-discuss] openvas hangs in 1%

Am 19.01.2017 um 15:41 schrieb googu hr: I am sure machine RAM is enough and how much is that what you *think* it's enough? 3 GB is at least required on a machine dedicated to run only openvas/gsa ___ Openvas-discuss mailing list

Re: [Openvas-discuss] Openvas Rsync Issue

Am 09.01.2017 um 13:57 schrieb satheesh prabhakaran: I tried installing openvas using below link and was able to install successfully in one environment (which does not need proxy to connect internet) http://www.dangtrinh.com/2015/05/install-openvas-8-in-ubuntu-1404-using.html But in other

Re: [Openvas-discuss] Assign Additional Resources CPU/Memory to openvasmd

irtual machines, they were able to get significantly better performance" Am 08.01.2017 um 03:23 schrieb Reindl Harald: Am 08.01.2017 um 03:19 schrieb Fábio Fernandes: In my opinion i think that those resources would be better spent on openvassd process since it does the heavy lifting. when the b

Re: [Openvas-discuss] Assign Additional Resources CPU/Memory to openvasmd

Am 08.01.2017 um 01:30 schrieb TN TN: HI Christian, I actually have it installed with postgresql, but when you're scanning thousands of internal hosts on a weekly basis it slows it down considerably over time.. I'm just curious on why openvasmd is not using enough resources on the server.

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 19:13 schrieb Reindl Harald: Am 03.01.2017 um 19:02 schrieb Christian Fischer: On 03.01.2017 18:24, Reindl Harald wrote: on machines with the settings below talking about 'auth_password' is wrong to begin with as long you are not been able as scanner to find any exception

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 19:02 schrieb Christian Fischer: Hi, On 03.01.2017 18:24, Reindl Harald wrote: Am 03.01.2017 um 18:17 schrieb Christian Fischer: On 03.01.2017 17:56, Reindl Harald wrote: Am 03.01.2017 um 17:46 schrieb Michael Meyer: *** Reindl Harald wrote: the scan is from yesterday

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 18:17 schrieb Christian Fischer: On 03.01.2017 17:56, Reindl Harald wrote: Am 03.01.2017 um 17:46 schrieb Michael Meyer: *** Reindl Harald wrote: the scan is from yesterday, the issues are months old (includinmg the openssh windows bruteforce nonsense on linux machines

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 17:46 schrieb Michael Meyer: *** Reindl Harald wrote: the scan is from yesterday, the issues are months old (includinmg the openssh windows bruteforce nonsense on linux machines with key-only-auth on recent Fedora steups) "openssh windows bruteforce nonsense on

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 17:46 schrieb Michael Meyer: *** Reindl Harald wrote: the scan is from yesterday, the issues are months old (includinmg the openssh windows bruteforce nonsense on linux machines with key-only-auth on recent Fedora steups) "openssh windows bruteforce nonsense on

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 16:17 schrieb Christian Fischer: On 03.01.2017 16:09, Reindl Harald wrote: nvt-sync this month failed but since this problem exists for month now i doubt that all of them failed with connection refused in the past months your posted plugin output shows that your feed

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 16:04 schrieb Christian Fischer: On 03.01.2017 15:55, Reindl Harald wrote: so better provide a recent feed instead talking about it i'm not responsible for the availability of the feed (which is btw. working just fine from two different systems in Germany and France). Just

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 15:51 schrieb Reindl Harald: Am 03.01.2017 um 08:49 schrieb Christian Fischer: On 02.01.2017 23:13, Reindl Harald wrote: damned how long takes it to remove this bullshit ENFORCING ANY BETTER SECURITY IN CASE OF OPPORTUNISTIC ENCRYPTION LEDAS IN DELIVERING CLIENT FALL BACK

Re: [Openvas-discuss] Port 25 weak ciphers

Am 03.01.2017 um 08:49 schrieb Christian Fischer: On 02.01.2017 23:13, Reindl Harald wrote: damned how long takes it to remove this bullshit ENFORCING ANY BETTER SECURITY IN CASE OF OPPORTUNISTIC ENCRYPTION LEDAS IN DELIVERING CLIENT FALL BACK TO ***NO ENVRYPTION** AT ALL 25/tcp Weak

[Openvas-discuss] Port 25 weak ciphers

damned how long takes it to remove this bullshit ENFORCING ANY BETTER SECURITY IN CASE OF OPPORTUNISTIC ENCRYPTION LEDAS IN DELIVERING CLIENT FALL BACK TO ***NO ENVRYPTION** AT ALL 25/tcp Weak ciphers offered by this service: TLS1_0_ECDH_anon_WITH_3DES_EDE_CBC_SHA

Re: [Openvas-discuss] OpenVAS Check for SSL Weak Ciphers

Am 21.12.2016 um 18:45 schrieb Eero Volotinen: Is there any reason to support other than TLSv1.2 protocols? in your small world probably not in the real world where you ar enot in the position to update every mailclient of every customer or even every operating system and it's browsers of

Re: [Openvas-discuss] Openvas9 scanner listen on interface IP address

Am 15.12.2016 um 11:48 schrieb Christian Fischer: On 15.12.2016 11:40, TN TN wrote: Hi, the latest version of the openvas9-scanner doesn't have the --listen= function. How can I make the service listen on the correct IP? Thanks T have a look at the CHANGES file of openvas-scanner-5.1 from

Re: [Openvas-discuss] Openvas9 scanner listen on interface IP address

Am 15.12.2016 um 11:40 schrieb TN TN: Hi, the latest version of the openvas9-scanner doesn't have the --listen= function. How can I make the service listen on the correct IP? with some luck now there are config files instead CLI params and so no longer override distribution service units

Re: [Openvas-discuss] Openvas-discuss Digest, Vol 118, Issue 25

Am 25.11.2016 um 13:24 schrieb Jaydeep Shah: I got the solution and fixed it. Now my OpenVAS is working. Thanks for including my query in the discussion list. did you see that? digests are for pure readers in general but without a useful subject it's even more annoying and the list server

Re: [Openvas-discuss] fedora + openvas 8

Am 22.11.2016 um 20:52 schrieb kalin m: hi all... from: http://www.openvas.org/install-packages-v7.html (there is no v8?!) i do: wget -q -O - http://www.atomicorp.com/installers/atomic |sh why in the world do you touch anything from Atmoic on Fedora? man dnf man yum

Re: [Openvas-discuss] scans take forever - sometimes...

Am 15.11.2016 um 23:54 schrieb Fábio Fernandes: It has happened to me too. Analyzing further with tcpdump and strace i could see that the retry speed rate seemed to be lower (maybe due to nmap adapting to the conditions of the network like weak connection or firewalls) but the same nmap

Re: [Openvas-discuss] In a case of the block, skip scanning.

Am 10.11.2016 um 17:23 schrieb n...@slimhost.com.ua: Could U please advise me, how I can skip scanning the host if it blocked my IP during the scan? how do you imagine to distinct between DROP becaus eof IP blocked and "-j DROP" default action for anything which is not allowed? you can't

Re: [Openvas-discuss] openvas 8

Am 10.11.2016 um 19:37 schrieb kalin m: i'd be really appreciative of a direction here. i've been trying this for a week and my deadline is almost here. if anybody has a winning combination of openvas 8 on any unix like os within vmware fusion 8.5 please let me know... [root@openvas:~]$ rpm

  1   2   3   4   5   >