[prev in list] [next in list] [prev in thread] [next in thread]
List: openvas-discuss
Subject: Re: [Openvas-discuss] scan stucks on Win7 machines - solved
From: Helms,_Michael_-_WVI_GmbH <m.helms () wvigmbh ! de>
Date: 2016-05-17 12:33:52
Message-ID: zarafa.573b0fb0.1883.65479f3f43b31b5c () zarafa ! wvi ! lan
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
I think, we can close this.
I have activated an old OpenVAS 8 (on ubuntu), made all OS and feed updates, and \
scanned a Win7 machine. Everything was ok.
Then I scanned the same Win7 machine with OpenVAS on Kali 2.0 (OS and feeds are up to \
date). The scan stuck again.
/var/lib/openvas/plugins/secpod_ms_office_detection_900025.nasl - stopped
/var/lib/openvas/plugins/2008/smb_virii.nasl – running endless
I think, it is mainly a problem in kali.
Von: eero.t.volotinen@gmail.com [mailto:eero.t.volotinen@gmail.com] Im Auftrag von \
Eero Volotinen
Gesendet: Donnerstag, 12. Mai 2016 19:11
An: Helms, Michael - WVI GmbH
Cc: openvas-discuss@wald.intevation.org
Betreff: Re: [Openvas-discuss] scan stucks on Win7 machines
Can you try to reproduce this issue on other machine / installation ?
--
Eero
2016-05-12 16:50 GMT+03:00 Helms, Michael - WVI GmbH <m.helms@wvigmbh.de \
<mailto:m.helms@wvigmbh.de> >:
Ok, have tried "strace -f -s 255 -p 7844". But for me, there is nothing to see.
You can find it here http://pastebin.com/iuQAJV4e <http://pastebin.com/iuQAJV4e>
Von: eero.t.volotinen@gmail.com <mailto:eero.t.volotinen@gmail.com> \
[mailto:eero.t.volotinen@gmail.com <mailto:eero.t.volotinen@gmail.com> ] Im Auftrag \
von Eero Volotinen
Gesendet: Mittwoch, 4. Mai 2016 02:00
An: Helms, Michael - WVI GmbH
Cc: openvas-discuss@wald.intevation.org <mailto:openvas-discuss@wald.intevation.org>
Betreff: Re: [Openvas-discuss] scan stucks on Win7 machines
Might be bug. Try adding -s 255 to strace parameters?
Eero
3.5.2016 4.24 ip. "Helms, Michael - WVI GmbH" <m.helms@wvigmbh.de \
<mailto:m.helms@wvigmbh.de> > kirjoitti:
The trace for smb_vitii.nasl:
http://pastebin.com/YJTzm3Yu <http://pastebin.com/YJTzm3Yu>
the process ist running – endless …..
Von: eero.t.volotinen@gmail.com <mailto:eero.t.volotinen@gmail.com> \
[mailto:eero.t.volotinen@gmail.com <mailto:eero.t.volotinen@gmail.com> ] Im Auftrag \
von Eero Volotinen
Gesendet: Dienstag, 3. Mai 2016 14:03
An: Helms, Michael - WVI GmbH
Cc: openvas-discuss@wald.intevation.org <mailto:openvas-discuss@wald.intevation.org>
Betreff: Re: [Openvas-discuss] scan stucks on Win7 machines
well, you could try this trick:
attach strace with parameters -f -p PID (ie. strace -f -p process-id) to see if the \
process is hanged or doing something?
and paste some lines of output to pastebin..
--
Eero
2016-05-03 14:59 GMT+03:00 Helms, Michael - WVI GmbH <m.helms@wvigmbh.de \
<mailto:m.helms@wvigmbh.de> >:
Hello,
while scanning Win7 Pro the scan stucks two times:
S 13:42 0:00 \_ openvassd: testing 192.168.1.112 \
(/var/lib/openvas/plugins/secpod_ms_office_detection_900025.nasl) S 13:51 \
0:54 | \_ openvassd: testing 192.168.1.112 \
(/var/lib/openvas/plugins/2008/smb_virii.nasl)
On some Win7 machines, the scan stucks only at the second.
Any ideas what the problem is?
Michael
--
Michael Helms, m.helms@wvigmbh.de <mailto:m.helms@wvigmbh.de>
WVI Prof. Dr. Wermuth Verkehrsforschung und Infrastrukturplanung GmbH
Nordstr. 11, 38106 Braunschweig
Sitz Braunschweig, Amtsgericht Braunschweig HRB 2805
Geschäftsführer: Dr.-Ing. Tobias Wermuth
www.wvigmbh.de <http://www.wvigmbh.de>
_______________________________________________
OpenVAS 8, Kali 2.0
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org <mailto:Openvas-discuss@wald.intevation.org>
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org <mailto:Openvas-discuss@wald.intevation.org>
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org <mailto:Openvas-discuss@wald.intevation.org>
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Attachment #5 (text/html)]
<html xmlns:v="urn:schemas-microsoft-com:vml" \
xmlns:o="urn:schemas-microsoft-com:office:office" \
xmlns:w="urn:schemas-microsoft-com:office:word" \
xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" \
xmlns="http://www.w3.org/TR/REC-html40"><head><meta http-equiv=Content-Type \
content="text/html; charset=utf-8"><meta name=Generator content="Microsoft Word 12 \
(filtered medium)"><style><!-- /* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Sprechblasentext Zchn";
margin:0cm;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";}
span.SprechblasentextZchn
{mso-style-name:"Sprechblasentext Zchn";
mso-style-priority:99;
mso-style-link:Sprechblasentext;
font-family:"Tahoma","sans-serif";}
span.E-MailFormatvorlage20
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:70.85pt 70.85pt 2.0cm 70.85pt;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=DE link=blue vlink=purple><div \
class=WordSection1><p class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>I think, we \
can close this.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p \
class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>I have \
activated an old OpenVAS 8 (on ubuntu), made all OS and feed updates, and scanned a \
Win7 machine. Everything was ok.<o:p></o:p></span></p><p class=MsoNormal><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p \
class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Then I \
scanned the same Win7 machine with OpenVAS on Kali 2.0 (OS and feeds are up to date). \
The scan stuck again.<o:p></o:p></span></p><p class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p \
class=MsoNormal><span \
lang=EN-US>/var/lib/openvas/plugins/secpod_ms_office_detection_900025.nasl - \
stopped<br>/var/lib/openvas/plugins/2008/smb_virii.nasl – running \
endless<br><br></span><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p></o:p></span></p><p \
class=MsoNormal><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>I think, it \
is mainly a problem in kali. <o:p></o:p></span></p><p class=MsoNormal><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><div \
style='border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt'><div><div \
style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p \
class=MsoNormal><b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>Von:</span></b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> \
eero.t.volotinen@gmail.com [mailto:eero.t.volotinen@gmail.com] <b>Im Auftrag von \
</b>Eero Volotinen<br><b>Gesendet:</b> Donnerstag, 12. Mai 2016 19:11<br><b>An:</b> \
Helms, Michael - WVI GmbH<br><b>Cc:</b> \
openvas-discuss@wald.intevation.org<br><b>Betreff:</b> Re: [Openvas-discuss] scan \
stucks on Win7 machines<o:p></o:p></span></p></div></div><p \
class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>Can you try to reproduce \
this issue on other machine / installation ?<o:p></o:p></p><div><p \
class=MsoNormal><o:p> </o:p></p></div><div><p \
class=MsoNormal>--<o:p></o:p></p></div><div><p \
class=MsoNormal>Eero<o:p></o:p></p></div></div><div><p \
class=MsoNormal><o:p> </o:p></p><div><p class=MsoNormal>2016-05-12 16:50 \
GMT+03:00 Helms, Michael - WVI GmbH <<a href="mailto:m.helms@wvigmbh.de" \
target="_blank">m.helms@wvigmbh.de</a>>:<o:p></o:p></p><div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Ok, \
have tried "strace -f -s 255 -p 7844". But for me, there is nothing to \
see.</span><o:p></o:p></p><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>You \
can find it here <a href="http://pastebin.com/iuQAJV4e" \
target="_blank">http://pastebin.com/iuQAJV4e</a></span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><div \
style='border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt'><div><div \
style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>Von:</span></b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a \
href="mailto:eero.t.volotinen@gmail.com" \
target="_blank">eero.t.volotinen@gmail.com</a> [mailto:<a \
href="mailto:eero.t.volotinen@gmail.com" \
target="_blank">eero.t.volotinen@gmail.com</a>] <b>Im Auftrag von </b>Eero \
Volotinen<br><b>Gesendet:</b> Mittwoch, 4. Mai 2016 \
02:00</span><o:p></o:p></p><div><div><p class=MsoNormal><br><b>An:</b> Helms, Michael \
- WVI GmbH<br><b>Cc:</b> <a href="mailto:openvas-discuss@wald.intevation.org" \
target="_blank">openvas-discuss@wald.intevation.org</a><br><b>Betreff:</b> Re: \
[Openvas-discuss] scan stucks on Win7 \
machines<o:p></o:p></p></div></div></div></div><div><div><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><p>Might \
be bug. Try adding -s 255 to strace \
parameters?<o:p></o:p></p><p>Eero<o:p></o:p></p><div><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>3.5.2016 4.24 ip. \
"Helms, Michael - WVI GmbH" <<a href="mailto:m.helms@wvigmbh.de" \
target="_blank">m.helms@wvigmbh.de</a>> kirjoitti:<o:p></o:p></p><div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>The \
trace for smb_vitii.nasl:</span><o:p></o:p></p><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><a \
href="http://pastebin.com/YJTzm3Yu" \
target="_blank">http://pastebin.com/YJTzm3Yu</a></span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span \
lang=EN-US style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>the \
process ist running – endless …..</span><o:p></o:p></p><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span lang=EN-US \
style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><div \
style='border:none;border-left:solid blue 1.5pt;padding:0cm 0cm 0cm 4.0pt'><div><div \
style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>Von:</span></b><span \
style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> <a \
href="mailto:eero.t.volotinen@gmail.com" \
target="_blank">eero.t.volotinen@gmail.com</a> [mailto:<a \
href="mailto:eero.t.volotinen@gmail.com" \
target="_blank">eero.t.volotinen@gmail.com</a>] <b>Im Auftrag von </b>Eero \
Volotinen<br><b>Gesendet:</b> Dienstag, 3. Mai 2016 14:03<br><b>An:</b> Helms, \
Michael - WVI GmbH<br><b>Cc:</b> <a href="mailto:openvas-discuss@wald.intevation.org" \
target="_blank">openvas-discuss@wald.intevation.org</a><br><b>Betreff:</b> Re: \
[Openvas-discuss] scan stucks on Win7 machines</span><o:p></o:p></p></div></div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>well, you \
could try this trick:<o:p></o:p></p><div><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>attach \
strace with parameters -f -p PID (ie. strace -f -p process-id) to see if the process \
is hanged or doing something?<o:p></o:p></p></div><div><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>and paste \
some lines of output to pastebin..<o:p></o:p></p></div><div><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>--<o:p></o:p></p></div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>Eero<o:p></o:p></p></div></div><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>2016-05-03 \
14:59 GMT+03:00 Helms, Michael - WVI GmbH <<a href="mailto:m.helms@wvigmbh.de" \
target="_blank">m.helms@wvigmbh.de</a>>:<o:p></o:p></p><p class=MsoNormal \
style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>Hello,<br><br>while \
scanning Win7 Pro the scan stucks two times:<br><br>S 13:42 \
0:00 \_ openvassd: testing 192.168.1.112 \
(/var/lib/openvas/plugins/secpod_ms_office_detection_900025.nasl)<br>S \
13:51 0:54 | \_ openvassd: testing \
192.168.1.112 (/var/lib/openvas/plugins/2008/smb_virii.nasl)<br><br>On some Win7 \
machines, the scan stucks only at the second.<br><br><br>Any ideas what the problem \
is?<br><br>Michael<br><br>--<br>Michael Helms, <a href="mailto:m.helms@wvigmbh.de" \
target="_blank">m.helms@wvigmbh.de</a><br>WVI Prof. Dr. Wermuth Verkehrsforschung und \
Infrastrukturplanung GmbH<br>Nordstr. 11, 38106 Braunschweig<br>Sitz Braunschweig, \
Amtsgericht Braunschweig HRB 2805<br>Geschäftsführer: Dr.-Ing. Tobias Wermuth<br><a \
href="http://www.wvigmbh.de" \
target="_blank">www.wvigmbh.de</a><br>_______________________________________________<br><br>OpenVAS \
8, Kali 2.0<br><br><br>_______________________________________________<br>Openvas-discuss \
mailing list<br><a href="mailto:Openvas-discuss@wald.intevation.org" \
target="_blank">Openvas-discuss@wald.intevation.org</a><br><a \
href="https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss" \
target="_blank">https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss</a><o:p></o:p></p></div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p></div></div></div></div><p \
class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><br>_______________________________________________<br>Openvas-discuss \
mailing list<br><a href="mailto:Openvas-discuss@wald.intevation.org" \
target="_blank">Openvas-discuss@wald.intevation.org</a><br><a \
href="https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss" \
target="_blank">https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss</a><o:p></o:p></p></div></div></div></div></div></div><p \
class=MsoNormal><br>_______________________________________________<br>Openvas-discuss \
mailing list<br><a href="mailto:Openvas-discuss@wald.intevation.org">Openvas-discuss@wald.intevation.org</a><br><a \
href="https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss" \
target="_blank">https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss</a><o:p></o:p></p></div><p \
class=MsoNormal><o:p> </o:p></p></div></div></div></body></html>
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic