[prev in list] [next in list] [prev in thread] [next in thread]
List: openvas-discuss
Subject: Re: [Openvas-discuss] OpenVAS discuss
From: Christian Fischer <christian.fischer () greenbone ! net>
Date: 2018-10-09 7:36:20
Message-ID: 78d64274-d438-359e-a4c1-c45b3913fec9 () greenbone ! net
[Download RAW message or body]
On 05.10.2018 16:45, Vanina Yordanova wrote:
> Hello,
>
> I would like to get access to OpenVAS mailing list. I have a question and I
> am running out of options how to solve it.
> Bellow you can see it.
> Thank you in advance!
just as a reference / follow-up. This was discussed / answered in:
https://community.greenbone.net/t/openvas-returns-0-results-and-n-a-severity/442
> ------------------------------------------------------------------------------------------------------
>
> Dear All,
>
> I am making my first steps in vulnerability testing. I installed OpenVAS9
> inside a docker container using maiksplain/openvas image. It is running on
> Ubuntu 18.04.
>
> When I applied the setup check almost everything gives OK except the
> following warnings:
> tep 1: Checking OpenVAS Scanner …
> ERROR: OpenVAS Scanner too old or too new: 5.1.2
> FIX: Please install OpenVAS Scanner 5.0.
> HINT: Please see the --v6/7/8/9 command line options to check other major
> versions.
>
> ERROR: Your OpenVAS-8 installation is not yet complete!
>
> Please follow the instructions marked with FIX above and run this
> script again.
>
> If you think this result is wrong, please report your observation
> and help us to improve this check routine:
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
> Please attach the log-file (/tmp/openvas-check-setup.log) to help us
> analyze the problem.
>
> root@7bdea11a30cb:/# ./openvas-check-setup --v9
> openvas-check-setup 2.3.7
> Test completeness and readiness of OpenVAS-9
>
> Please report us any non-detected problems and
> help us to improve this check routine:
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
>
> Send us the log-file (/tmp/openvas-check-setup.log) to help analyze the
> problem.
>
> Use the parameter --server to skip checks for client tools
> like GSD and OpenVAS-CLI.
>
> Step 1: Checking OpenVAS Scanner …
> OK: OpenVAS Scanner is present in version 5.1.2.
> OK: redis-server is present in version v=3.0.6.
> OK: scanner (kb_location setting) is configured properly using the
> redis-server socket: /var/run/redis/redis.sock
> OK: redis-server is running and listening on socket:
> /var/run/redis/redis.sock.
> OK: redis-server configuration is OK and redis-server is running.
> OK: NVT collection in /var/lib/openvas/plugins contains 46995 NVTs.
> WARNING: Signature checking of NVTs is not enabled in OpenVAS Scanner.
> SUGGEST: Enable signature checking (see
> http://www.openvas.org/trusted-nvts.html).
> WARNING: The initial NVT cache has not yet been generated.
> SUGGEST: Start OpenVAS Scanner for the first time to generate the cache.
> Step 2: Checking OpenVAS Manager …
> OK: OpenVAS Manager is present in version 7.0.3.
> OK: OpenVAS Manager database found in /var/lib/openvas/mgr/tasks.db.
> OK: Access rights for the OpenVAS Manager database are correct.
> OK: sqlite3 found, extended checks of the OpenVAS Manager installation
> enabled.
> OK: OpenVAS Manager database is at revision 184.
> OK: OpenVAS Manager expects database at revision 184.
> OK: Database schema is up to date.
> OK: OpenVAS Manager database contains information about 46995 NVTs.
> OK: At least one user exists.
> OK: OpenVAS SCAP database found in /var/lib/openvas/scap-data/scap.db.
> OK: OpenVAS CERT database found in /var/lib/openvas/cert-data/cert.db.
> OK: xsltproc found.
> Step 3: Checking user configuration …
> WARNING: Your password policy is empty.
> SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a password policy.
> Step 4: Checking Greenbone Security Assistant (GSA) …
> OK: Greenbone Security Assistant is present in version 7.0.3.
> OK: Your OpenVAS certificate infrastructure passed validation.
> Step 5: Checking OpenVAS CLI …
> OK: OpenVAS CLI version 1.4.5.
> Step 6: Checking Greenbone Security Desktop (GSD) …
> SKIP: Skipping check for Greenbone Security Desktop.
> Step 7: Checking if OpenVAS services are up and running …
> OK: netstat found, extended checks of the OpenVAS services enabled.
> OK: OpenVAS Scanner is running and listening on a Unix domain socket.
> OK: OpenVAS Manager is running and listening on all interfaces.
> OK: Greenbone Security Assistant is running and listening on all interfaces.
> OK: Greenbone Security Assistant is listening on port 443, which is the
> default port.
> Step 8: Checking nmap installation …
> WARNING: Your version of nmap is not fully supported: 7.01
> SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE NVTs.
> Step 10: Checking presence of optional tools …
> OK: pdflatex found.
> OK: PDF generation successful. The PDF report format is likely to work.
> OK: ssh-keygen found, LSC credential generation for GNU/Linux targets is
> likely to work.
> OK: rpm found, LSC credential package generation for RPM based targets is
> likely to work.
> OK: alien found, LSC credential package generation for DEB based targets is
> likely to work.
> OK: nsis found, LSC credential package generation for Microsoft Windows
> targets is likely to work.
>
> It seems like your OpenVAS-9 installation is OK.
>
> If you think it is not OK, please report your observation
> and help us to improve this check routine:
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
> Please attach the log-file (/tmp/openvas-check-setup.log) to help us
> analyze the problem.
>
> So, the only thing I find a bit weird is that first is checks for Openvas 8
> which fails and than when I specify a version(9) is good.
>
> I am trying to test devices on test network which has Internet as well. I
> can ping the targets, so I suppose the connection is okay. When I am trying
> to perform I test I have 2 types of problems.
>
> 1. The task is running for quite some time and than returns severity not
> applicable and 0 test results
> 2. The task never changes status to DONE.
>
> I can perform only discovery, which gives a log.
>
> I have no idea what could the problem be or how to debug it.
>
> Any help will be SO SO SO much appreciated!!! [image: :slight_smile:]
>
> Thanks,
> Vanina
_______________________________________________
Openvas-discuss mailing list
Openvas-discuss@wald.intevation.org
https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic