New install, nothing found

Support/Development for OpenVAS
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

New install, nothing found

Unread post by aecoles »

Hi,

New install of OpenVAS 8 on CentOS today following instructions on here.

I'm on the Greenbone security assistant website and I can add targets and scan them.
However I'm sure I'm doing something wrong.

None of my scans however are showing up any vulnerabilities.
I'd like to think I'm good, but I'm sure that there will be something...
I've even tried a Full and very deep ultimate scan. Nothing detected.

Probably a Schoolboy error, but someone put me out of my misery please...
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

Re: New install, nothing found

Unread post by aecoles »

Anyone?
:cry:
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: New install, nothing found

Unread post by scott »

selinux is a pretty common issue, if thats on it could interfere with it. Under the hood its using nmap for discovery, so another test would be to run that from the command line to see what you get on the same target(s).
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

Re: New install, nothing found

Unread post by aecoles »

Hi, sorry. Newbie here.
What exactly do I need to do?

I thought I had disabled selinux following the instructions
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: New install, nothing found

Unread post by scott »

I usually either boot the kernel with selinux=0 or disable it in /etc/sysconfig/selinux (and reboot)
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

Re: New install, nothing found

Unread post by aecoles »

The instructions from this website that I followed had that step.

1) Disable SELINUX.
Edit /etc/selinux/config, save and reboot (SELINUX=disabled)

I'm pretty sure I did it right. Is there a command I can run to confirm if it is running or not?
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: New install, nothing found

Unread post by scott »

Yup, use:

getenforce
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

Re: New install, nothing found

Unread post by aecoles »

Thanks.

When I do this I get 'Disabled' as a response.

If it helps, under SecInfo Management, I can view and see CVE's, CPE's etc, but if I select NVT's I did get nothing. Yet suddenly I am getting a list.
Previous reports didn't give me any numbers in the scan results, but I will try a new scan now and see what happens...
I'll keep you posted.
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: New install, nothing found

Unread post by scott »

Maybe you dont have any nvts? You could run the openvas-nvt-sync and see what you get
aecoles
Forum User
Forum User
Posts: 6
Joined: Wed Jan 04, 2017 11:27 am
Location: UK

Re: New install, nothing found

Unread post by aecoles »

Seems to be working now.
Frustrating as I'd like to know why it took so long to get the NVT's
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: New install, nothing found

Unread post by scott »

Theres just the one NVT source from Greenbone and that one is in germany, it can be slow at times. The one thats really really slow is the SCAP data source from Mitre. That one is like a dialup a lot of the time.
Post Reply