On Thu, Dec 15, 2005 at 10:17:13PM +0100, Javier Fernández-Sanguino Peña wrote: > On Thu, Dec 15, 2005 at 07:18:04PM +0100, Marc Haber wrote: > > [2/[EMAIL PROTECTED] sid]:~$ md5sum nessusd_2.2.5-3_i386.deb > > 5540b1f4dfd81c4ba3c71ac4e2dbecfa nessusd_2.2.5-3_i386.deb > > [3/[EMAIL PROTECTED] sid]:~$ > > That is correct, however, with that one, as I said: > > $ ldd /usr/sbin/nessusd |grep ssl > libssl.so.0.9.8 => /usr/lib/i686/cmov/libssl.so.0.9.8 (0x40115000) > libssl.so.0.9.7 => /usr/lib/i686/cmov/libssl.so.0.9.7 (0x403b4000) > > And that one *works* with my Nessus client (2.2.5-2), I just tried. Are you > sure you are using the same Nessus daemon provided by the package, have you > restarted it?
I have stopped it, verified that there was no daemon listening on the nessus port, and used the init script to start it again. > Could you show me the output of 'dpkg -l "*libssl*"' [1/[EMAIL PROTECTED] sid]:~$ dpkg --list '*libssl*' Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Installed/Config-files/Unpacked/Failed-config/Half-installed |/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad) ||/ Name Version Description +++-==============-==============-============================================ un libssl <none> (no description available) pn libssl0.9.6 <none> (no description available) ii libssl0.9.7 0.9.7g-5 SSL shared libraries ii libssl0.9.8 0.9.8a-5 SSL shared libraries un libssl096 <none> (no description available) un libssl096-dev <none> (no description available) [2/[EMAIL PROTECTED] sid]:~$ > Can you please send me a full list of the nessus packages installed and the > output of ldd for those? which packages, which binaries? > > The issue is, however, with the daemon. 2.2.5-2 works with all clients > > I tried, and 2.2.5-3 fails with all clients I tried. > > Not for me, just tested and works fine with nessusd 2.2.5-3 and nessus > 2.2.5-2. There are two problems here: > > - binary linked against both libssl versions (see > http://lists.debian.org/debian-release/2005/10/msg00125.html) > - Undeclared dependencies, but that is another (different) issue. > > If you want me to get access to the chroot to diagnose, feel free to send me > access through private e-mail. In any case I'm going to recompile it so that > it *only* links against the latest openssl version (might require relinking > of all nessus packages though) I'm going to prepare a test system tomorrow. Can you send me your ssh public key? Greetings Marc -- ----------------------------------------------------------------------------- Marc Haber | "I don't trust Computers. They | Mailadresse im Header Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834 Nordisch by Nature | How to make an American Quilt | Fax: *49 621 72739835 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]