Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Greenbone Vulnerability Manager | Libellux #18

Closed
libellux opened this issue Jan 2, 2021 · 20 comments
Closed

Greenbone Vulnerability Manager | Libellux #18

libellux opened this issue Jan 2, 2021 · 20 comments

Comments

@libellux
Copy link
Owner

libellux commented Jan 2, 2021

https://www.libellux.com/openvas/

OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated testing, authenticated testing, various high level and low level Internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test.

@lateralraises
Copy link

lateralraises commented Jan 8, 2021

Hi @libellux , I followed to the tee your steps in installing OpenVAS20.08 but I don't have Scan Configurations and Port lists after.
Scan Config
No Scan Configurations
Port Lists
No Port Lists
Unable to create a scan tasks because Scan Config is not existing
Scan Config  is not existing resulting to unable to create a task
If creating a Scan Config
Creating a scan config error_3
Creating a scan config error_2
Creating a scan config error_1

I did the greenbone-nvt-sync, greenbone-scapdata-sync, and greenbone-certdata-sync but Scan Config and Port Lists are still empty.
What steps I could do to have Scan Config and Port Lists?

@libellux
Copy link
Owner Author

@lateralraises hello,

Did you create the following step to modify the scanner? https://www.libellux.com/openvas/#modify-scanner
Also if you go Administration and Feed Status what does it say?

@lateralraises
Copy link

lateralraises commented Jan 11, 2021

@libellux Yes, I did modify the scanner.
Screen Shot 2021-01-11 at 1 01 41 PM

This is the current status of my NVT Feeds.
Screen Shot 2021-01-11 at 4 16 14 PM

also I have another question, is there a difference on using greenbone-feed-sync than greenbone-nvt-sync?

@libellux
Copy link
Owner Author

libellux commented Jan 11, 2021

@lateralraises hm it looks like the NVT have not been sync'ed properly please try login as the gvm user and run greenbone-nvt-sync. If it still doesn't after you tried to synchronize run the following command afterwards as the gvm user greenbone-feed-sync --type GVMD_DATA. As you can see in the last screenshot you sent version 0T indicates that the feed type haven't any applied version so to speak.

@lateralraises
Copy link

@libellux it worked!
This is the status of my NVT Feeds after doing the greenbone-nvt-sync
There is still no Scan Configs and Port Lists on this part
after greenbone-nvt-sync

This is the Feed Status after I do the greenbone-feed-sync --type GVMD_DATA
after greenbone-feed-sync --type GVMD_DATA
Scan Configs, Port Lists, Report Formats are also displaayed.
Scan Configs are now present
Report Formats are also present

You're guide on building GVM20.08 from source is the only one that worked for me.
Other guides gave me an errors during installation and .csv report formats are not possible.
Thank you!

@libellux
Copy link
Owner Author

libellux commented Jan 12, 2021

@lateralraises so to get all the syncs up-to-date that does not give you an timestamped version you just run (as the gvm user, make sure you run them one at the time or you will get temporary blocked):

/opt/gvm/sbin/greenbone-feed-sync --type GVMD_DATA
/opt/gvm/sbin/greenbone-feed-sync --type SCAP
/opt/gvm/sbin/greenbone-feed-sync --type CERT

Then now they should all be up-to-date and you're welcome anytime!

Best regards,
Fredrik

@libellux libellux changed the title OpenVAS Vulnerability Assessment Scanner | Libellux Greenbone Vulnerability Manager | Libellux Jan 13, 2021
@xsidkaosx
Copy link

xsidkaosx commented Feb 5, 2021

Hi @libellux, i recently perform the GVM 20.08 installation, but when trying to open the reports tab, it shows the following: Report format must be active --> #29

You can help me, please.

Best regards,
Joseph

@libellux
Copy link
Owner Author

Hi @libellux, i recently perform the GVM 20.08 installation, but when trying to open the reports tab, it shows the following: Report format must be active --> #29

You can help me, please.

Best regards,
Joseph

Hello @xsidkaosx,

So I ran through everything with the latest updates to the source build. I cannot reproduce your issue. Please follow this document step by step and it should work like a charm.

gsa_20_08_1
gsa_20_08_1_feeds
gsa_20_08_1_reports

@xsidkaosx
Copy link

Thank you very much @libellux , I was able to solve this issue by completely reinstalling the entire machine and gvm with your guide.

@lateralraises
Copy link

Hi @libellux I tried your steps again for installing GVM 21.04. I encounter an error when starting the gvmd. I'm in the reloading the system daemon and enable the startup script steps.
This is the error I got
image

This is the log on my gvmd.log
There is gvmd: Main process is already running
image

What could be the solution for this?

@libellux
Copy link
Owner Author

libellux commented May 6, 2021

Hi @libellux I tried your steps again for installing GVM 21.04. I encounter an error when starting the gvmd. I'm in the reloading the system daemon and enable the startup script steps.
This is the error I got
image

This is the log on my gvmd.log
There is gvmd: Main process is already running
image

What could be the solution for this?

Hello @lateralraises hmm looks like the process is already running, did you try run a simple reboot of the server? I need to update my 21.04 guide so will run through the installation yet again and see if I can reproduce your issue.

@lateralraises
Copy link

@libellux Yes I did reboot the server and tried to start again the gvmd service and I got the same results.

@rafael4ndre
Copy link

Hi. I followed the steps to install GVM 21.04 on ubuntu but I am unable to login. On the web interface I see an error "The Greenbone Vulnerability Manager service is not responding. This could be due to system maintenance. Please try again later, check the system status, or contact your system administrator."

Looking at the services, the gvmd service is not starting. I am getting the folowing result:

"gvmd.service - Open Vulnerability Assessment System Manager Daemon
Loaded: loaded (/etc/systemd/system/gvmd.service; enabled; vendor preset: enabled)
Active: activating (auto-restart) (Result: exit-code) since Wed 2021-07-28 19:25:10 -03; 11s ago
Docs: man:gvmd(8)
https://www.greenbone.net
Process: 2883 ExecStart=/opt/gvm/sbin/gvmd --osp-vt-update=/opt/gvm/var/run/ospd.sock (code=exited, status=1/FAILURE)
Tasks: 1 (limit: 4617)
Memory: 2.2G
CGroup: /system.slice/gvmd.service
└─1011 gvmd: Syncing SCAP: Updating max CVSS
"

Any hints on what is happening?

@libellux
Copy link
Owner Author

Hi. I followed the steps to install GVM 21.04 on ubuntu but I am unable to login. On the web interface I see an error "The Greenbone Vulnerability Manager service is not responding. This could be due to system maintenance. Please try again later, check the system status, or contact your system administrator."

Looking at the services, the gvmd service is not starting. I am getting the folowing result:

"gvmd.service - Open Vulnerability Assessment System Manager Daemon
Loaded: loaded (/etc/systemd/system/gvmd.service; enabled; vendor preset: enabled)
Active: activating (auto-restart) (Result: exit-code) since Wed 2021-07-28 19:25:10 -03; 11s ago
Docs: man:gvmd(8)
https://www.greenbone.net
Process: 2883 ExecStart=/opt/gvm/sbin/gvmd --osp-vt-update=/opt/gvm/var/run/ospd.sock (code=exited, status=1/FAILURE)
Tasks: 1 (limit: 4617)
Memory: 2.2G
CGroup: /system.slice/gvmd.service
└─1011 gvmd: Syncing SCAP: Updating max CVSS
"

Any hints on what is happening?

Hello @rafael4ndre its changed since the last update the systemd files. I will update my installation guide tmrw. I ping you :)

@romelBen
Copy link

romelBen commented Aug 8, 2021

Hey @libellux, I am creating a script which uses Greenbone's documentation with my repo here: https://github.com/romelBen/gvm_bash_script. I am correcting the PATHing since they recently changed it on their repos. Would it be suggested to download from their tarballs instead than their release branches? I would like your insight. Keep up the good work!

@libellux
Copy link
Owner Author

Hey @romelBen @lateralraises @rafael4ndre I did just update the documentation and it works.. however its not 100% complete with comments etc. I'll fix that tomorrow! Thanks tho for reading my guides and hope you'll enjoy it!

@Kri5h123
Copy link

HI,
Thanks for creating this guide. It has been very much helpful.
I was stuck at creating admin user and password for GVM.
I got the following error:

libgvm_base.so.21: cannot open sha red object file: No such file or directory

solution to this was

adding /usr/local/lib/ in /etc/ld.so.conf.d/gvm.conf

Would be great if you can add this in your guide.

@libellux
Copy link
Owner Author

HI,
Thanks for creating this guide. It has been very much helpful.
I was stuck at creating admin user and password for GVM.
I got the following error:

libgvm_base.so.21: cannot open sha red object file: No such file or directory

solution to this was

adding /usr/local/lib/ in /etc/ld.so.conf.d/gvm.conf

Would be great if you can add this in your guide.

Hello and thanks for the kind words!

Thanks for the notice will make sure to add this in next revision. I'm currently working on version 2.0.0 of Libellux: Up and Running to make it easier for users to copy & paste input. The development website is available at: https://www.libellux.dev.

@bk5839
Copy link

bk5839 commented Oct 8, 2021

This is really a great guide

Thanks a lot, got only 2 errors while installing but somehow they are resolved

@bk

@libellux
Copy link
Owner Author

libellux commented Oct 8, 2021

This is really a great guide

Thanks a lot, got only 2 errors while installing but somehow they are resolved

@bk

Thanks for the kind words @bk5839 I'm currently working on version 2.0.0 of this project hence why few issues haven't been resolved on the "live" website. You can follow the progress of the updated version here: https://www.libellux.dev/openvas/

Best regards,
Fredrik

@libellux libellux closed this as completed Oct 9, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

7 participants