[Openvas-discuss] Service temporarily down
On 27. September 2016 14:41 Christian Fischer wrote >the document available here shows the needed steps to get it up again: >http://plugins.openvas.org/ova_503.txt All works fine - no errors... But after starting everything, the webinterface ist not available. After reboot of the VM, it is available again, but still "Service temporarily down"! :-( P.S: Is it correct, that openvasmd --modify-scanner gives the feedback, that server is updated, but --scanner-ca-pub and --scanner-key-pub and --scanner-key-priv does not give any feedback? ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Windows SBS2011 and CVE-2014-1812
Hi, NVT is handling it perfectly. May be some other issues. You are able to login the target machine? and make sure "RemoteRegistry: service is running. Thanks, Antu Sanadi. On Friday 23 September 2016 05:17 PM, Chris Bridges wrote: Hi. Running OV8 on Ubuntu from M.Ravazi PPA, and everything seems to work well, but there are definitely some CVE’s that are definitely a problem on the Windows SBS2011 server, but are not being picked up on Openvas. The Specifics are that CVE-2014-1812 requires the gppref.dll to be between 6.1.7601.22000 -> 22604 ( for server 2008 R2) which is what SBS2011 is built on. The Actual file version or gppref.dll on the machine is 6.1.7601.17514 ( ie should be reporting this as a problem) My Scan config is Network Vulnerability Test Families : Windows : all selected Windows : Microsoft Bulletins : all selected, and 'Microsoft Group Policy Preferences Privilege Elevation Vulnerability (2962486)' is located in this list. This is an authenticated scan with a valid domain account, and the 'Login configurations' - NTLMSSP - yes The Actual reported operating system version is OS Name: Microsoft Windows® Small Business Server 2011 Standard OS Version:6.1.7601 Service Pack 1 Build 7601 Does anyone have any thoughts as to why this is not being picked up, or is there something I have not selected ? Many Thanks Chris - RFEL : SIGNAL PROCESSING IQ : FPGA EXPERTISE Chris Bridges , Head of IT & Engineering Support , DDI +44 (0)1983 216631 M +44 (0)7776 234533 RFEL Ltd, Unit B, The Apex, St Cross Business Park, Newport, Isle of Wight, PO30 5XW,UK T +44 1983 216600 F +44 1983 216611 E chris.brid...@rfel.com W www.rfel.com - Company No : 2389307 : This e-mail is for the intended addressee only. If you have received it in error then you must not use, retain, disseminate or otherwise deal with it. Please notify the sender by return email and then delete the e-mail. The views of the author may not necessarily constitute the views of RFEL Ltd. _ This email has been scanned by the MessageLabs _ ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss -- Saner Personal A free vulnerability mitigation software. Build strong defense. http://www.secpod.com/saner-personal.html ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Openvas-discuss] Service temporarily down
Hi all Downloaded vm from homepage with demo installation. All works fine, except... Running openvas-check-setup returns " It seems like your OpenVAS installation is OK." But the result for running a task is always: "Results of last operation: Start Task: 503 Service temporarily down" Attached the log file of the check. Who can help? Chris openvas-check-setup.log Description: openvas-check-setup.log ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Service temporarily down
Hi, On 27.09.2016 14:16, Christoph Hodel wrote: > But the result for running a task is always: > "Results of last operation: Start Task: 503 Service temporarily down" the document available here shows the needed steps to get it up again: http://plugins.openvas.org/ova_503.txt ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] GSA crashes, no log
I don’t see anything in the log. What kind of crash is it? GSAD terminates or the website gets unresponsive? You said that you upgraded GSAD maybe you can try to use a version where it is not upgraded and see if that behavior persists. Fabio. > No dia 26/09/2016, às 13:21, tato...@free.fr escreveu: > > Hello, > > Crash just happened again. Now I have logs but I'm afraid it won't help. Here > are the last lines: > > lib serv: DEBUG:2016-09-26 13h40.29 CEST:5476:send 65 from > > lib serv: DEBUG:2016-09-26 13h40.29 CEST:5476: => done > lib xml: DEBUG:2016-09-26 13h40.29 CEST:5476:asking for 1048576 > lib xml: DEBUG:2016-09-26 13h40.29 CEST:5476: <= status="200" status_text="OK"> start="1" max="-1"/> id="20f3034c-e709-11e1-87e7-406186ea4fc5">Wizard RowsIf > the number of rows in a listing is above this any wizard be > hidden.3 id="20f3034c-e709-11e1-87e7-406186ea4fc5">Wizard RowsIf > the number of rows in a listing is above this any wizard be > hidden.3462 > > The crash time and last log time are consistent. But I don't see anything > wrong. > > Any idea ? > > Thanks > > - Mail original - > De: "tatooin"> À: "Reindl Harald" > Cc: openvas-discuss@wald.intevation.org > Envoyé: Mercredi 14 Septembre 2016 16:33:56 > Objet: Re: [Openvas-discuss] GSA crashes, no log > > Thanks Reindl, and actually I agree with you given the number of stupid > issues I've struggled with since using Kali. But unfortunately, for > pentesting, I don't see any alternatives to kali. > > Anyway thanks for posting your scripts, I'm using yours now. For > reference, the default logrotate files shipped with kali contains: > > > /var/log/openvas/gsad.log { > missingok > notifempty > create 640 root adm > daily > rotate 7 > compress > postrotate >if [ -s /var/run/gsad.pid ]; then kill -1 `cat /var/run/gsad.pid`; > fi >openvaslogs=`ls /var/log/openvas/gsad.log.*` >if [ -n "$openvaslogs" ]; then >chown root:adm $openvaslogs >chmod 640 $openvaslogs >fi > endscript > } > > Same for openvas manager and scanner... > > On Wed, 2016-09-14 at 16:14 +0200, Reindl Harald wrote: >> >> Am 14.09.2016 um 14:42 schrieb tatooin: >>> Yes, I understand that. But the point is; why is this broken logrotate >>> script shipped by default with OpenVas (and actually, GSA) on kali ? >> >> because "kali" without ever used it seems to be a broken distribution >> when they are even not capable to write a working logrotate script which >> sends a SIGHUP to the process to actually get the filehandle closed >> >> [root@openvas:~]$ cat /etc/logrotate.d/openvas-gsa >> # logrotate for openvas-manager >> /var/log/openvas/openvas-gsa.log { >> rotate 4 >> weekly >> compress >> delaycompress >> missingok >> postrotate >> /usr/bin/killall -HUP gsad > /dev/null 2>&1 || true >> endscript >> } >> >> [root@openvas:~]$ cat /etc/logrotate.d/openvas-manager >> # logrotate for openvas-manager >> /var/log/openvas/openvasmd.log { >> rotate 4 >> weekly >> compress >> delaycompress >> missingok >> postrotate >> /usr/bin/killall -HUP openvasmd > /dev/null 2>&1 || true >> endscript >> } >> >> [root@openvas:~]$ cat /etc/logrotate.d/openvas-scanner >> # logrotate for openvas >> /var/log/openvas/openvassd.log { >> rotate 4 >> weekly >> compress >> delaycompress >> missingok >> postrotate >> /usr/bin/killall -HUP openvassd > /dev/null 2>&1 || true >> endscript >> } >> >>> Probably a question best posted to Kali forums, though >> >> yes >> ___ >> Openvas-discuss mailing list >> Openvas-discuss@wald.intevation.org >> https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > > > ___ > Openvas-discuss mailing list > Openvas-discuss@wald.intevation.org > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > ___ > Openvas-discuss mailing list > Openvas-discuss@wald.intevation.org > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
Re: [Openvas-discuss] Overrides management questions
There seems to be a problem with your request but the error code seems suspicious. Task should be: status="500"> > > tnx > > - Mail original - > De: tato...@free.fr > À: "matthew mundell"> Cc: openvas-discuss@wald.intevation.org > Envoyé: Lundi 26 Septembre 2016 17:15:26 > Objet: Re: [Openvas-discuss] Overrides management questions > > Well, then I get an "internal error" message... > > > > I tried with your example: > > > This is actually of little concern. > > False Positive > a06cbabd-0cd4-4604-a58d-f831d9c7ec29 > any > > > Please clarify what I am doing wrong, I'm a bit lost with the syntax. > > Thanks > > - Mail original - > De: "mattm" > À: tato...@free.fr > Cc: "Fábio Fernandes" , > openvas-discuss@wald.intevation.org > Envoyé: Lundi 26 Septembre 2016 14:50:20 > Objet: Re: [Openvas-discuss] Overrides management questions > >> I did some research and I tried sending the following xml command to omp to >> create an override: >> >> >> This is actually of little concern. >> 1.3.6.1.4.1.25623.1.0.103239 > > The NVT oid should be an attribute: > > > > See > > http://www.openvas.org/omp-6-0.html#command_create_override > > The example is wrong though, I'll update it. > > -- > Greenbone Networks GmbH > Neuer Graben 17, 49074 Osnabrueck, Germany | AG Osnabrueck, HR B 202460 > Executive Directors: Lukas Grunwald, Dr. Jan-Oliver Wagner > ___ > Openvas-discuss mailing list > Openvas-discuss@wald.intevation.org > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss > ___ > Openvas-discuss mailing list > Openvas-discuss@wald.intevation.org > https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Openvas-discuss] download extreme slow (3 kbyte/sec) and rsync not working
i'm currently downloading the VM image with 3 kbyte/sec speed. rsync download is not working are there any mirrors ? OpenVAS community feed server - http://www.openvas.org/ This service is hosted by Greenbone Networks - http://www.greenbone.net/ All transactions are logged. If you have any questions, please use the OpenVAS mailing lists or the OpenVAS IRC chat. See http://www.openvas.org/ for details. By using this service you agree to our terms and conditions. @ERROR: Unknown module 'vm' rsync error: error starting client-server protocol (code 5) at main.c(1534) [Receiver=3.0.9] please fix it asap ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
[Openvas-discuss] download extreme slow (3 kbyte/sec) and rsync not working
i'm currently downloading the VM image with 3 kbyte/sec speed. rsync download is not working are there any mirrors ? OpenVAS community feed server - http://www.openvas.org/ This service is hosted by Greenbone Networks - http://www.greenbone.net/ All transactions are logged. If you have any questions, please use the OpenVAS mailing lists or the OpenVAS IRC chat. See http://www.openvas.org/ for details. By using this service you agree to our terms and conditions. @ERROR: Unknown module 'vm' rsync error: error starting client-server protocol (code 5) at main.c(1534) [Receiver=3.0.9] please fix it asap ___ Openvas-discuss mailing list Openvas-discuss@wald.intevation.org https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss