I only open up port 9390. Try to connect to the system using telnet to see if
you can connect?
If that works, look at some of the OpenVAS log for more clues (openvasmd.log).
Perhaps you forgot to load in the slaves CA certificate?
Thijs Stuurman
Quality & Security | KPN Internedservices
If I suspect something is wrong with redis on my slaves, I just flush it; no
need to rm and/or reinstall:
redis-cli -s /var/run/redis/redis.sock flushall
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedserv
wse, load it with that and you should
be all set.
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31(0)6
report, overrides, current_credentials.uuid, min_qod);
So.. a few things are broken in the versions for download at
http://www.openvas.org/install-source.html -_-
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@inter
(SELECT id FROM users WHERE uuid =
'aa9e7cb5-3ad9-41fd-95d5-e15716067b20') AND min_qod = 70 AND (end_time = 0 or
end_time >= m_now ());
max
--
10.0
(1 row)
Now it's tempting to change the source and recompile but I rather find out
where and when this broke; why isn't anyone else running in to t
d explicit type casts.
tasks=> SELECT max(severity) FROM report_counts WHERE report = 4469 AND
override = 1 AND user = '1' AND min_qod = 70;
max
-
(1 row)
"""
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.
5716067b20\N admin \N
"""
I don't think I have changed enough to suddenly cause this error so I am not
sure where to even begin on this one.
Everything runs fine, the job results are ok .. but it cannot go from 100% to
status Done on a task because of this error.
An
/redis.sock
lrwxrwxrwx 1 root root 25 Aug 30 17:29 /tmp/redis.sock ->
/var/run/redis/redis.sock
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@k
017 openvasmd-pg
-rwxr-xr-x 1 root root 67712 May 9 2017 openvas-migrate-to-postgres
-rwxr-xr-x 1 root root 67701 May 10 2017 openvas-migrate-to-postgres_thijss
-rwxr-xr-x 1 root root2567 May 9 2017 openvas-portnames-update
-rwxr-xr-x 1 root root 302544 May 9 2017 openvassd
Thijs Stuur
You need to share the get_tasks permission .. per task.
Make them all a member of a group and give the get_tasks permission to that
group (you need to do this for each task)
Thijs Stuurman
Quality & Security | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thij
of tests being executed is a lot less.
(I always have the feeling my Nessus scanner performs the same tests way faster
and with a lot less CPU stress)
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0
Yes.
Just use GVM tools, that’s what it was made for.
Again, check out https://github.com/Thij/openvas_scheduler which should
help you get started quickly. Feel free to ask me for help or tips.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur
Running 9 here as well, I have:
· Email
· HTTP Get
· SCP
· Send to host
· SNMP
· Sourcefire Connector
· Start Task
· System Logger
· Verinice.PRO Connector
Thijs Stuurman
Security Operations Center | KPN
Sounds like a horrible solution to me even if it works.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)29947618
tup the initial database in there just like it would do
in sqlite?
Just give it a try.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.sur
I use gvm-tools and a python script to schedule my jobs, perhaps this can serve
as inspriration for your own solution:
https://github.com/Thij/openvas_scheduler
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.st
-priorities="NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2:-CIPHER-ALL:+AES-256-CBC"
You need to tell gsad how to connect to openvasmd (mport options).
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl>
with the manager.
COMMANDS Run a list of commands.
…
“””
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)2
which gvmd is listening.
I do not see any option in the slave configuration to set secure of insecure…
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mai
Somewhere in my old notes I see port 9393 was used by openvasad, perhaps part
of OpenVAS 8? I don’t have it anymore.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@k
titute gvmd with openvasmd)
That’s the account I added to my master to use though OMP Slave using port 9390.
My slaves start openvasmd (gmvd) as:
gvmd --rebuild
gvmd -p 9390 -a 0.0.0.0
I guess 9393 will work as well but I don’t know where you got that from.
Thijs Stuurman
Security Operations C
know.
I have 1 master and 4 slaves running…
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31(0)62436
Try the /var/lib/openvas/CA/cacert.pem from your slave.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)29947618
My best guess is that you didn’t load in the right CA certificate from your
slave at step:
CA Certificate: The certificate you gathered from the slave
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.st
So.. Google for GNU General Public License?
(https://www.gnu.org/licenses/gpl-howto.en.html ?)
And of course any other license you may encounter within software source code.
You may want to get a lawyer involved.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur
.
#
#unixsocket /tmp/redis.sock
unixsocket /var/run/redis/redis.sock
unixsocketperm 755
“””
Ubuntu 16.04.3 LTS
# dpkg -l |grep redis-server
ii redis-server 2:3.0.6-1
Running openvas9.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur
No idea, sorry.
I compiled OpenVAS manually on a Ubuntu 16.04 VM.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)2
For Debian or Ubuntu, try:
apt-get install texlive-latex-extra --no-install-recommends
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@k
Something like this?
/opt/openvas9/sbin/gsad -p 443 --listen=0.0.0.0 --mlisten=127.0.0.1
--mport=9390 --ssl-private-key=/etc/apache2/ssl/blah.key
--ssl-certificate=/etc/apache2/ssl/blah.crt --http-sts
--gnutls-priorities="NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2:-CIPHER-ALL:+AES-256-CBC&quo
I don't have any measurements but scans seem to be going smooth and fast on my
side.
I started a scan round yesterday morning and it should be done by Friday.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31
quot;
mlisten and mport point towards the manager.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8
s configured ok)
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD
You have to set permissions on each note and override in my experience… just
like the task, it’s tedious work.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@k
are not your responsibility, allow their manager do his
or her job.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)29947618
ompare button (underneath Actions, next to ‘delete’ so be careful),
click on two and you’ll get a comparison overview.
Still, why care about past results; it’s the latest scan result that counts in
my book.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs
Christiaan,
I am not familiar with your current error message.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476
When creating the New Scanner on the master to configure the slave scanner, did
you upload the slave's CA certificate? See the screenshot on the site.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.st
Go to each task and at the bottom you can add permissions.
The defaults will grant read permission to your user, group or role you choose.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices
.
Suggestions: restart all machine(s); check diskspace; check dmesg
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)29947618
I have no PDF generation issues with OpenVAS 9 on Ubuntu 16.04.02 LTS.
The email function within an alert to send the PDF is also working ok for me.
Perhaps you want to reinstall/setup your latex software packages.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur
publicly connected to the Internet I won't mind
taking 30 minutes to try and get it to work for you if you allow me to.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID
ing the -p options.
See --help for all the possible arguments.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42
ure for an
Ope
nVAS installation
Options:
-h Print help
-a Automatically set up default infrastructure for OpenVAS
"""
Just running it with -a should do the trick.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thij
Whatever works best for you.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID
See https://blog.haardiek.org/setup-openvas-as-master-and-slave.html
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)2
needs resources because it
only tunnels traffic)
https://help.ubuntu.com/community/SSH_VPN
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https
to OpenVAS on IP 127.0.0.1 (localhost) port 9390 (default
openvasmd port).
The other parameters are self-explanatory I think.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.
Alan Jackson,
Yes there is.
Edit a task and you'll see an Alerts option.
Under Configuration you can create the Alert which can do exactly what you are
looking for.
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.st
Hostname: feed.openvas.org
Protocols: http (wget, TCP port 80) & rsync (TCP port 873)
Thijs Stuurman
Security Operations Center | KPN Internedservices B.V.
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur.
are required to modify a task. Is this correct?
raise NotImplementedError
“””
So.. I guess not yet.
The “old” command line OMP has the option:
-M, --modify-taskModify a task.
But I never used it, not sure how it works.
Thijs Stuurman
Security Operations Center | KPN
machine with an Intel(R)
Xeon(R) CPU E5-2660 0 @ 2.20GHz; VM has 4 cores with 4gb ram, Ubuntu 16.04 LTS
and postgresql 9.5 database size of 600mb; only see 100% cpu core usage per
SELECT thread without IO waits or anything else blocking/halting/being in the
way)
Thijs Stuurman
Security Operations
No, you are not crazy.
I don't know what you use the OMP command for but I suggest you also take a
look at the new GVM Tools as being a better tool.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices
re; you'll have to adjust your
startup script then.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31(
with raw data as well)
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16A
I was checking my scan configs about those ports. You indeed want to include
all the ports and also scan IP’s which do not reply to pings. (do not skip any
IP for any reason, just scan everything).
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur
and it clearly shows it is a PCI internal scan which was
performed.
It just makes the audits easier.
If in any doubt, contact your PCI auditor to verify what he thinks is
acceptable.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl
wanted, automate
processes such as onboarding and keep control.
I can imagine our CMDB showing the latest scan results and having a 'Request
scan' button which gets queued in bus and handled by a
future version of my scheduler.
Thijs Stuurman
Security Operations Center | KPN Internedservices
to look in to it right now though, it works great!
Currently my setup is battle testing my gvm-tools scheduler script, going very
well!
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs
: A master instance and 4 slave scanners. Every task is set and
configured to run on a specific slave scanner.
Any question, feedback, bug report, fork etc' is welcome.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.st
Remi,
What is the vulnerability OID number?
(This should be mentioned in the details of the vulnerability, at the bottem
under the Log Method section)
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices
of the firewall, and confirm your
firewalling is OK.
Or you whitelist your scanner in the firewall and test the system regardless.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@k
See https://blog.haardiek.org/setup-openvas-as-master-and-slave.html
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476
root root 4096 May 9 19:18 fr
4 drwxr-xr-x 3 root root 4096 May 9 19:18 pt_BR
4 drwxr-xr-x 3 root root 4096 May 9 19:18 ru
4 drwxr-xr-x 3 root root 4096 May 9 19:18 tr
4 drwxr-xr-x 3 root root 4096 May 9 19:18 zh_CN
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur
I flushed it
using:
redis-cli -s /var/run/redis/redis.sock flushall
It had to rebuild the database but it worked just fine again after that.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices
Christian,
Yes I agree.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD
lrwxrwxrwx 1 root root 40 May 9 18:51
/etc/systemd/system/multi-user.target.wants/redis-server.service ->
/lib/systemd/system/redis-server.service
root@ivss:/# cat /lib/systemd/system/redis-server.service |grep PrivateTmp
PrivateTmp=yes
root@ivss:/#
Thijs Stuurman
Security Operations Center |
Christian,
Ah so that is what is going on.. sneaky! I created the openvassd.conf and it
works, thanks!
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048
to fix the path I guess.. someday.. after my vacation ;p
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +31
You can put 'm on a group.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007
with strace and follow childs (strace –f
/usr/sbin/openvassd) to see what happens
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)2
Are you sure your openvas certificate is OK? Not expired or anything?
Make a backup (if you care for your current certs) and make ‘m again
“openvas-manage-certs -a”.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.st
for a problem or solution.
Perhaps it helps to get more log/verbose/debug information out of sqlite if
possible.
Check versions, is everything up to date? (sqlite, openvas)
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.st
don't see much time for it in the coming weeks.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B
LS1.0"
The --m parameters are for the connection to openvasmd.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.com>
T: +31(0)299476185 | M: +
to communicate
with or set openvasmd to listen on a TCP port starting it specifically with
options such as:
openvasmd -p 9390 -a 127.0.0.1
or
gvmd -p 9390 -a 127.0.0.1
OpenVAS9 it will be gvmd.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl
Gerhard,
You are using the wrong port.
OMP needs to connect to the openvasmd process (or gvmd in openvas9) on port
9390.as Jonas is also doing.
Openvasmd / gvmd is the master process, omp and gsad (the web gui) connect to
that to get the information.
Thijs Stuurman
Security Operations Center
_RSA_WITH_AES_256_CBC_SHA
| TLS_RSA_WITH_AES_256_CBC_SHA256
| Compressors (1)
|_ uncompressed
"""
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
P
-sync --wget
Than rebuild again after that.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02
be achievable.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048
W: https
Christian,
I did rebuild the manager etc' to get the nasl change 'live'.
I'll take a look at the patch and consider my options. Thank you for the
information and work.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T
ther scanners later today and start more tasks after.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.com
T: +31(0)299476185 | M: +31(0)624366778
PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
Fingerprint: 2EDB 9B42 D6E8
gvm does not exist, I added a symlink in the etc directory to the
openvas directory to fix this for now on my installation:
root@xxx:~# ls -l /opt/openvas9-trunk/etc/
total 4
lrwxrwxrwx 1 root root9 May 29 12:50 gvm -> ./openvas
drwxr-xr-x 3 root root 4096 May 29 10:33 openvas
Th
Christian,
Thank you for the tip, unfortunately it still hangs on the mentioned 4 checks
even after 45 minutes.
* The progress does get to 6% now instead of 2%.
I am going to install the trunk version from the SVN repo to see if that helps.
Thijs Stuurman
Security Operations Center | KPN
for sure.
Strace of 23807 shows it looping on:
"""
kill(23878, SIG_0) = 0
select(9, [8], NULL, NULL, {0, 1}) = 0 (Timeout)
select(8, [7], NULL, NULL, {0, 1000}) = 0 (Timeout)
wait4(-1, NULL, WNOHANG, NULL) = 0
"""
23778 is the testi
it) uses the same
values.
Main changes compared to 5.0.7:
15 * An issue which caused the 'scanner_plugins_timeout' preference to
contain a
16 wrong value under certain circumstances has been addressed.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur
icy_cpe_violation.nasl (1.3.6.1.4.1.25623.1.0.103964)
[Wed May 24 10:53:31 2017][19500] Stopped scan wrap-up: Launching
Policy/gb_policy_cpe_ok.nasl (1.3.6.1.4.1.25623.1.0.103963)
[Wed May 24 10:53:31 2017][19411] Test complete
[Wed May 24 10:53:31 2017][19411] Total time to scan all hosts :
else experiencing this? Is this a known issue? I updated the NVT's
etc' yesterday.
The processes run for an hour+.
Killing defuncts the process. I am unable to continue in any way except kill
and abort the whole scan.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur
Nikita,
Oh! I couldn’t really make that up out of the errors.
Good to hear you fixed it!
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@kpn.com<mailto:thijs.stuur...@kpn.co
Try this one:
../openvas-libraries-9.0.1/build/CMakeCache.txt
Line 40:
//Flags used by the compiler during all build types.
CMAKE_C_FLAGS:STRING=
Van: Nikita Gupta [mailto:nikitar...@gmail.com]
Verzonden: vrijdag 19 mei 2017 12:04
Aan: Thijs Stuurman <thijs.stuur...@internedservices.nl&
I have not seen this error on Ubuntu 16.04, try adding the –fPIC to the build
process.
Find a cmake kind of file in your build directory, something like:
CMAKE_CXX_FLAGS:STRING and add the option.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur
for now, not sure if missing it really makes a big deal
for me. (what am I missing really? Someone let me know if I should care)
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl<mailto:thijs.stuur...@internedservices.nl> |
thijs.stuur...@k
to 127.0.0.1 should work.
Maybe your openvasmd is listning through a socket and not an IP listener. The
netstat output will show those as well. (or run "netstat -vnepl | grep openvas"
to filter it out of the mess)
Thijs Stuurman
Security Operations Center | KPN Internedservices
t
}, 16) = 0
It connects locally to 127.0.0.1 port 9390 which has (netstat -vnepl) the
openvasmd service listening on my machine:
tcp0 0 127.0.0.1:9390 0.0.0.0:* LISTEN
0 30921 5816/openvasmd
Thijs Stuurman
Security Operations Center
.
In OpenVAS9 I see 3 options for a "Scanner":
- OMP Slave
- OpenVAS Scanner
- OSP Scanner
I use the OMP Slave one. If anyone has any questions regarding this, let me
know.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stuur...@internedservices.nl | thijs.stuur...@kpn.
;$TABLES_145"
migrate_146_to_147 () {
pg "ALTER TABLE report_counts ADD COLUMN min_qod INTEGER;"
"""
After the import I additional ran " ./openvasmd --migrate " to make sure my
postgres was up to date and surely it went Migrating from 147 to 184 ag
grate-to-postgres: resources_predefined nvts
tasks reports
11d10
< auth_cache
26,30d24
< host_details
< host_identifiers
< host_max_severities
< host_oss
< hosts
36d29
< oss
<29>May 10 10:21:13 openvas-migrate-to-postgres: Internal Error: tables being
copied do not match
it, edit it and set
"Alterable Task" to yes or you won't be able to change the slave scanner
afterwards.
If you want I can send you a copy of my scheduler script; it's not yet the
nicest script in the world though and written specifically for my setup.
Thijs Stuurman
Security Operati
:20 2017 -- 1 IP address (1 host up) scanned in
9.31 seconds
"""
Afterwards I grepped on "Ports" (or perhaps a -v on Up) and cleaned up the
output a bit to get a workable simple overview per host.
Thijs Stuurman
Security Operations Center | KPN Internedservices
thijs.stu
regards / Vriendelijke groet,
Internedservices
Thijs Stuurman
Security Specialist
Thijs Stuurman
Wielingenstraat 8 | T +31 (0)299 476 185
1441 ZR Purmerend | F +31 (0)299 476 288
https://www.internedservices.nl | KvK Hoorn 36049256
Internedservices is ISO 9001:2008, ISO/IEC 27001:2005,
ISO 2
hy I manually added the permission using omp.
Thijs Stuurman
Security Operations Center
PGP Key-ID: 0x16ADC048
Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048
Internedservices - a KPN Company
Wielingenstraat 8 | 1441 ZR Purmerend | The Netherlands
T: +31(0)299476185 | M: +31(0
1 - 100 of 110 matches
Mail list logo