Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add: Verify signature of sha256sums file #1505

Merged
merged 10 commits into from
Oct 20, 2023
Merged

Add: Verify signature of sha256sums file #1505

merged 10 commits into from
Oct 20, 2023

Conversation

jjnicola
Copy link
Member

@jjnicola jjnicola commented Sep 29, 2023
edited
Loading

What:
Verify signature of sha256sums file
Jira: SC-920

Why:

How:
Set the env variable GNUPGHOME with the path to the keyring
If you launch nasl-cli, run
nasl-cli feed update -x

If you launch openvasd, run
openvasd --feed-signature-check
or add the following to the openvas.toml configuration file

[feed]
path = "/home/jnicola/install/var/lib/openvas/plugins/"
signature_check = true

Checklist:

  • Tests
  • PR merge commit message adjusted

@jjnicola jjnicola requested a review from a team as a code owner September 29, 2023 12:17
@jjnicola jjnicola force-pushed the signature-check branch 2 times, most recently from 6f6fce8 to 9960804 Compare October 4, 2023 12:07
@jjnicola jjnicola force-pushed the signature-check branch 2 times, most recently from 986a06f to 6dcec37 Compare October 11, 2023 10:59
@jjnicola jjnicola marked this pull request as draft October 13, 2023 06:28
@jjnicola
Add: add 'signature-check' command line option to nasl-cli
43e523b 
This allows to enable the feed signature check.
@jjnicola
Add: add possibility to enable signature check to openvasd
a0bdbf2 
This allows to enable the feed signature check before getting the OIDs. This can be performed via the signature-check cmd-line opiton
or via the config file.
@jjnicola
update readme
b92ec1a
@jjnicola jjnicola marked this pull request as ready for review October 16, 2023 13:10
@jjnicola jjnicola mentioned this pull request Oct 16, 2023
Merged
1 task
@jjnicola jjnicola enabled auto-merge (squash) October 19, 2023 09:10
@jjnicola jjnicola merged commit 0899d3f into main Oct 20, 2023
28 of 29 checks passed
@jjnicola jjnicola deleted the signature-check branch October 20, 2023 11:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Kraemii Kraemii Kraemii approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jjnicola @Kraemii