On Mon, Feb 7, 2011 at 4:42 PM, Matthew Mundell < [email protected]> wrote:
> > I can't see anything relevant in the logs: > > Hmm, it should say something a file called openvasmd.log. Could you turn > on all logging by changing every 7 in > /usr/local/etc/openvas/openvasmd_log.conf to a 255, and then check the > logs? Watchout, because the log may reveal passwords. > > Hmmm. It shows: md main: DEBUG:2011-02-07 05h48.05 utc:12672: OpenVAS Manager md main: DEBUG:2011-02-07 05h48.05 utc:12673: sql_x: SELECT value FROM meta WHERE name = 'database_version'; md main: DEBUG:2011-02-07 05h48.05 utc:12673: sql_x end md main: DEBUG:2011-02-07 05h48.05 utc:12673: sql_x: SELECT count(*) FROM meta WHERE name = 'nvts_md5sum' OR name = 'nvt_preferences_enabled'; md main: DEBUG:2011-02-07 05h48.05 utc:12673: sql_x end md main:CRITICAL:2011-02-07 05h48.05 utc:12673: main: database must be initialised (with --update or --rebuild) But I've already tried --update AND --rebuild (in the hope that one or the other will fix the problem). But... one minute later, this appeared in the log: lib serv:WARNING:2011-02-07 05h49.49 utc:12743: openvas_server_new: failed to set credentials key file lib serv:WARNING:2011-02-07 05h49.49 utc:12743: openvas_server_new: cert file: /usr/local/var/lib/openvas/CA/clientcert.pem lib serv:WARNING:2011-02-07 05h49.49 utc:12743: openvas_server_new: key file : /usr/local/var/lib/openvas/private/CA/clientkey.pem Looks like I'd created the server key and cert but not the client key and cert. Doh! I've created them now and things seem to be improving -- the rebuild is now taking much longer to run. :-) Still... (ignoring the fact that I completely skipped a step)... I'm surprised that authentication/certificate problems aren't reported by the manager. The errors about the cert and key aren't reported until 1 minute later by the server. Even with -v -f and logging dialed up to 255, there's no authentication/certificate error reported by the manager. I would have expected something at the command line to indicate failure (especially when running in the foreground and verbose). Regardless, I'm very happy now! Things appear to be working. Thanks for your help Matthew! Cheers, David.
_______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
