just an info that you might already know. And a question:
I know that you have it in the repo already.
But is it worth running on one box and is it somehow "idiotproof"
?Are you planning some integration into ASL?
Thanks
SOURCES:Hello,
the OpenVAS community is proud to announce the release of OpenVAS-5!
OpenVAS-5: New Asset-Management, Delta-Reports and embedded SCAP-Data.
One year after OpenVAS-4 the fifth version of the tool for vulnerability
scanning and management offers several new features. At the same time the
number of freely available vulnerability checks has increased to over 25,000.
A very practical extension is the possibility to show the differences between
two scan reports and the direct availability of current CPE and CVE information
inside the OpenVAS database. This saves time for users who are finding out
about changes and security recommendations. The new asset management adds a
second view on scan results. It allows the user to review scan results for any
selection of IP devices in the network.
All in all 20 new features were added, especially focusing on simplifying daily
use. The systemtic improvements underline the position of OpenVAS as the most
advanced Open Source solution for vulnerability management. The new version can
be downloaded free and is available as Free Software under the GNU GPL license.
The company Greenbone Networks develops and uses OpenVAS as a basis for its
appliance product family for vulnerability scanning and management. Together
with the companies SecPod, SecuritySpace and the wider community new
vulnerability tests and feature improvements are developed on a daily basis.
The German Federal Office for Information Security (BSI) supports OpenVAS and
uses it, together with many other federal agencies, for their IT security
framework.
OpenVAS-5 can be experienced live at the Linuxtag Conference and Exhibition in
Berlin (Germany) from 23rd to 26th of May 2012 at the BSI booth.
New features:
* Delta reports to analyse differences between two scans.
* Security Information Database: Integrated SCAP data (CPE, CVE) including
update method via feed service.
* Integrated Asset Management.
* Configuration object 'Port Lists' for transparent TCP/UDP port ranges.
* Prognostic scans based on asset data and current SCAP data.
* Support for individual time zones for users.
* Support for obeservers (granting read-only access)
* Support for notes/overrides lifetimes.
* Trashcan for collecting removed items before ultimate deletion.
* Container tasks for importing reports.
* SSH port for Local Security Checks configurable.
* Product detections as reported by Scanner are handled to allow detailed
cross-referenced detection information.
* Support for sorting results by CVSS score.
* Support for importing results sent through the XML escalator.
* Support for escalating result to a Sourcefire Defense Center.
* Support for using an SSH key pair for SSH authentication.
* Individual user settings, starting with time zone.
* Display single result details.
* Icon indicators for detected operating systems.
* LDAP per-user authentication method.
Improved features:
* Updated builtin Report Format Plugins HTML, Text and LaTeX/PDF to reflect
various new features that are already present in GSA, including delta and
prognostic reports.
* Product detection information in results XML.
* Performance for massiv scanner results by using transaction groups.
* Import of Target lists to allow comma-separated, line-by-line lists.
* Support for large database files on 32-bit platforms.
Changed features:
* The user interface design of the web interface has been updated.
* Report format signatures no longer contain user editable fields.
Thus, users can change comments without loosing validity of plugins.
* The max_host and max_checks scan performance parameters have been moved from
scan configs to tasks.
* Security: Enforces strict permissions on sensitive OpenVAS Manager files.
* Security: Drop privileges before executing report format plugins if running with
elevated privileges.
Compatibility and migration:
* The OpenVAS NVT Feed will be extended with tests that take advantage of the
network scan feature but fully keeps the behaviour for previous releases.
* The OpenVAS Manager has a migration option for updating an OpenVAS Manager 2.0
SQL database. But there is no support to downgrade the database back to 2.0.
* It is highly recommended to test and verify a migration only with a full backup.
* For upgrades from old OpenVAS 3.x, please also refer to the OpenVAS-4 announcement.
http://lists.wald.intevation.org/piperm ... 00136.html
http://www.openvas.org/news.html#openvas5
