[prev in list] [next in list] [prev in thread] [next in thread]
List: openvas-discuss
Subject: [Openvas-discuss] OpenVAS4 issue with om user
From: "--[ UxBoD ]--" <uxbod () splatnix ! net>
Date: 2011-11-29 18:09:08
Message-ID: d4bb9fd8-ec1a-4f28-aee1-23ffb27adde6 () office ! splatnix ! net
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hello,
I have configured a new install of OpenVAS4 to use our own issue certificates by \
placing them in /etc/pki/tls, as per all our other installations, and then when \
building OpenVAS I set in CMakeLists.txt :
set (OPENVAS_SCANNER_CERTIFICATE "/etc/pki/tls/certs/scanner01c_server.pem")
set (OPENVAS_SCANNER_KEY "/etc/pki/tls/private/scanner01k_server.pem")
set (OPENVAS_CLIENT_CERTIFICATE "/etc/pki/tls/certs/scanner01c_user.pem")
set (OPENVAS_CLIENT_KEY "/etc/pki/tls/private/scanner01k_user.pem")
set (OPENVAS_CA_CERTIFICATE "/etc/pki/CA/certs/OurCA.pem")
This was done for each of the packages. When I connect to the GSA that works \
absolutely fine and presents the correct certificate; though when I try and launch a \
task it stops straight away with a message in openvassd.messages saying "[Tue Nov 29 \
13:00:47 2011][2227] bad login attempt from 127.0.0.1".
Is this because we need to create the user certificate with a DN of 'om' for the \
internal communication to work ?
--
Thanks, Phil
[Attachment #5 (text/html)]
<html><head><style type='text/css'>p { margin: 0; }</style></head><body><div \
style='font-family: Courier New; font-size: 10pt; color: #000000'>Hello,<br><br>I \
have configured a new install of OpenVAS4 to use our own issue certificates by \
placing them in /etc/pki/tls, as per all our other installations, and then when \
building OpenVAS I set in CMakeLists.txt :<br><br>set (OPENVAS_SCANNER_CERTIFICATE \
"/etc/pki/tls/certs/scanner01c_server.pem")<br>set \
(OPENVAS_SCANNER_KEY \
"/etc/pki/tls/private/scanner01k_server.pem")<br>set \
(OPENVAS_CLIENT_CERTIFICATE "/etc/pki/tls/certs/scanner01c_user.pem")<br>set \
(OPENVAS_CLIENT_KEY \
"/etc/pki/tls/private/scanner01k_user.pem")<br>set \
(OPENVAS_CA_CERTIFICATE \
"/etc/pki/CA/certs/OurCA.pem")<br><br>This was done for each of the packages. \
When I connect to the GSA that works absolutely fine and presents the correct \
certificate; though when I try and launch a task it stops straight away with a \
message in openvassd.messages saying "[Tue Nov 29 13:00:47 2011][2227] bad login \
attempt from 127.0.0.1".<br><br>Is this because we need to create the user \
certificate with a DN of 'om' for the internal communication to work ?<br><div><span \
name="x"></span>-- <br>Thanks, Phil<span \
name="x"></span><br></div><br></div></body></html>
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic