[atomic] Openvas 4.x Updates

Atomic repository announcements, new release notifications and other news regarding the atomic yum repository.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Thanks for the tip, the newer version, is it already in the yum repo from atomic?
Following the new users steps I still got the old version and the same problem.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Ah the update is there, seems better but now I receive the following errors when clicking on the NVT feed or try to run a scan;

in /var/log/openvassmd.log:

event task:MESSAGE:2011-05-06 20h30.15 utc :8131: Status of task test (eeca7541-c924-4e12-8fde-5d2bec7042b9) has changed to Requested
event task:MESSAGE:2011-05-06 20h30.16 utc :8131: Task eeca7541-c924-4e12-8fde-5d2bec7042b9 has been requested to start
lib serv:WARNING:2011-05-06 20h30.16 utc :8131: Failed to gnutls_bye: Error in the push function.

lib serv:WARNING:2011-05-06 20h30.18 utc :8133: openvas_server_connect: failed to connect to server: Broken pipe

lib serv:WARNING:2011-05-06 20h30.18 utc :8133: Failed to gnutls_bye: Error in the push function.

event task:MESSAGE:2011-05-06 20h30.18 utc :8133: Status of task test (eeca7541-c924-4e12-8fde-5d2bec7042b9) has changed to Stopped
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: [atomic] Openvas 4.x Updates

Unread post by scott »

Is that the right version? The atomic ones dont use /var/log/openvassmd.log
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

sorry must be;
/var/log/openvas/openvasmd.log
&
/var/log/openvas/openvassd.log

error is in /var/log/openvas/openvasmd.log
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: [atomic] Openvas 4.x Updates

Unread post by scott »

Ok I saw that on another box, but it ended up scanning fine.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

If I click on the settings link or NVt link it gives me the following error:
{code}
Internal error: get_feed_oap:732

An internal error occurred while getting the feed list. The current list of feeds is not available. Diagnostics: Failure to connect to administrator daemon.
Also the scan says:
Stopped at 1 %

Looks like it still does not work?

edit when I try to resume the scan it says:

event auth:MESSAGE:2011-05-06 23h32.14 utc :8993: Authentication success for user admin (41200804-076c-4e56-a682-99ca5c083238)
md main:WARNING:2011-05-06 23h32.14 utc :8993: read_from_server: failed to read from server: A TLS packet with unexpected length was received.

event task:MESSAGE:2011-05-06 23h32.14 utc :8993: Status of task test (eeca7541-c924-4e12-8fde-5d2bec7042b9) has changed to Requested
event task:MESSAGE:2011-05-06 23h32.14 utc :8993: Task eeca7541-c924-4e12-8fde-5d2bec7042b9 has been resumed
lib serv:WARNING:2011-05-06 23h32.14 utc :8993: Failed to gnutls_bye: Error in the push function.

lib serv:WARNING:2011-05-06 23h32.16 utc :8995: openvas_server_connect: failed to connect to server: Broken pipe

lib serv:WARNING:2011-05-06 23h32.16 utc :8995: Failed to gnutls_bye: Error in the push function.

event task:MESSAGE:2011-05-06 23h32.16 utc :8995: Status of task test (eeca7541-c924-4e12-8fde-5d2bec7042b9) has changed to Stopped
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

For some reason the connection to openvas-server stops (broken pipe) and the scan stops.
Everything seems to be running?!

tcp 0 0 0.0.0.0:9390 0.0.0.0:* LISTEN 8047/openvasmd
tcp 0 0 0.0.0.0:9391 0.0.0.0:* LISTEN 19245/openvassd: wa
tcp 0 0 127.0.0.1:9393 0.0.0.0:* LISTEN 20146/openvasad
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Might be a bug?

http://wald.intevation.org/tracker/inde ... 9&atid=220
I have the same error / hanging situation when I run the openvasmd --sport 9391 --port 9390 -d /tmp/tasks-import.db --rebuild command.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

I am pretty stuck now :)

If I remove all files in /var/lib/openvas/mgr and do a

touch /var/lib/openvas/mgr/tasks.db
openvasmd --backup
strace openvasmd --rebuild

it just hangs..if I strace it I get:

getrusage(RUSAGE_SELF, {ru_utime={0, 70989}, ru_stime={0, 284956}, ...}) = 0
times({tms_utime=7, tms_stime=28, tms_cutime=0, tms_cstime=2}) = 429506782
gettimeofday({1305028907, 296573}, NULL) = 0
getrusage(RUSAGE_SELF, {ru_utime={0, 70989}, ru_stime={0, 284956}, ...}) = 0
times({tms_utime=7, tms_stime=28, tms_cutime=0, tms_cstime=2}) = 429506782
sendto(3, "\27\3\1\0\320*\365\213\326X\24`K\227\253\336\325\246\262\177\231\372f\323\230\3N\341\244uD\276"..., 213, 0, NULL, 0) = 213
select(4, [3], [], [3], {1, 0}) = 1 (in [3], left {0, 999998})
recvfrom(3, "", 5, 0, NULL, NULL) = 0
write(4, "md main:WARNING:2011-05-10 12h"..., 146) = 146
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
select(4, [], [], [3], {1, 0}) = 0 (Timeout)
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: [atomic] Openvas 4.x Updates

Unread post by scott »

what version of sqlite are you running?
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Hi Scott:

[mve@vps500 ~]$ rpm -qa | grep sqlite
sqlite-3.7.0.1-1.el5.art
sqlite-devel-3.7.0.1-1.el5.art
python-sqlite-1.1.7-1.2.1
sqlite-3.7.0.1-1.el5.art
[mve@vps500 ~]$ rpm -qa | grep openvas
openvas-libraries-4.0.4-1.el5.art
openvas-scanner-3.2.3-1.el5.art
openvas-cli-1.1.2-2.el5.art
openvas-1.0-0.5.el5.art
openvas-glib2-2.22.5-1.el5.art
openvas-manager-2.0.3-3.el5.art
openvas-administrator-1.1.1-2.el5.art
[mve@vps500 ~]$ rpm -qa | grep green
greenbone-security-assistant-2.0.1-3.el5.art
[mve@vps500 ~]$
scott
Atomicorp Staff - Site Admin
Atomicorp Staff - Site Admin
Posts: 8355
Joined: Wed Dec 31, 1969 8:00 pm
Location: earth
Contact:

Re: [atomic] Openvas 4.x Updates

Unread post by scott »

So its not sqlite then, unless you have some source installs on the system? I recall their being a locking problem with sqlite before 3.5 or 3.6
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Hi Scott,

No source tarbal installs or whatsoever.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Allright I cleaned all configs and packages so I start new on my CentOS 5.6 64 bit box:

yum -y install openvas:

Dependencies Resolved

===============================================================================================================================================================================================================================================
Package Arch Version Repository Size
===============================================================================================================================================================================================================================================
Installing:
openvas noarch 1.0-0.5.el5.art atomic 2.5 k
Installing for dependencies:
greenbone-security-assistant x86_64 2.0.1-3.el5.art atomic 397 k
openvas-cli x86_64 1.1.2-2.el5.art atomic 13 k
openvas-glib2 x86_64 2.22.5-1.el5.art atomic 1.7 M
openvas-libraries x86_64 4.0.4-1.el5.art atomic 905 k
openvas-manager x86_64 2.0.3-3.el5.art atomic 262 k
openvas-scanner x86_64 3.2.3-1.el5.art atomic 166 k

Transaction Summary
===============================================================================================================================================================================================================================================
Install 7 Package(s)
Upgrade 0 Package(s)

Total download size: 3.4 M
Downloading Packages:
(1/7): openvas-1.0-0.5.el5.art.noarch.rpm | 2.5 kB 00:00
(2/7): openvas-cli-1.1.2-2.el5.art.x86_64.rpm | 13 kB 00:00
(3/7): openvas-scanner-3.2.3-1.el5.art.x86_64.rpm | 166 kB 00:00
(4/7): openvas-manager-2.0.3-3.el5.art.x86_64.rpm | 262 kB 00:00
(5/7): greenbone-security-assistant-2.0.1-3.el5.art.x86_64.rpm | 397 kB 00:00
(6/7): openvas-libraries-4.0.4-1.el5.art.x86_64.rpm | 905 kB 00:00
(7/7): openvas-glib2-2.22.5-1.el5.art.x86_64.rpm | 1.7 MB 00:00
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 2.3 MB/s | 3.4 MB 00:01
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : openvas-libraries 1/7
Installing : openvas-manager 2/7
/bin/touch: cannot touch `/var/lib/openvas/mgr/tasks.db': No such file or directory
Installing : openvas-scanner 3/7
Installing : openvas-cli 4/7
Installing : openvas-glib2 5/7
Installing : greenbone-security-assistant 6/7
Installing : openvas 7/7
error reading information on service openvas-administrator: No such file or directory
Starting greenbone-security-assistant: [ OK ]

Installed:
openvas.noarch 0:1.0-0.5.el5.art

Seems that 2 things are going wrong: the tasks.db file and the administrator package.

What can i do best now after these errors?
Manually fix them by:
yum -y install openvas-administrator && touch /var/lib/openvas/mgr/tasks.db

BTW the file is there:
file /var/lib/openvas/mgr/tasks.db
/var/lib/openvas/mgr/tasks.db: SQLite database (Version 3)

It has just been created,.
xmichielx
Forum User
Forum User
Posts: 42
Joined: Thu Nov 12, 2009 9:01 am

Re: [atomic] Openvas 4.x Updates

Unread post by xmichielx »

Again a little bit further, openvasmd --rebuild works, user has been created etc..
Now the openvas-check tool gives:

Step 6: Checking Greenbone Security Desktop (GSD) ...
ERROR: No Greenbone Security Desktop (gsd) found or too old.
FIX: Please install Greenbone Security Desktop 1.1.0.

ERROR: Your OpenVAS-4 installation is not yet complete!

Please follow the instructions marked with FIX above and run this
script again.

If you think this result is wrong, please report your observation
and help us to improve this check routine:
http://lists.wald.intevation.org/mailma ... as-discuss
Please attach the log-file (/tmp/openvas-check-setup.log) to help us analyze the problem.

[root@vps500 mgr]# /etc/init.d/g
gpm gsad
[root@vps500 mgr]# /etc/init.d/gsad status
gsad (pid 4106) is running...
[root@vps500 mgr]# yum search greenbone
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* atomic: www7.atomicorp.com
* base: ftp.tudelft.nl
* extras: ftp.tudelft.nl
* rpmforge: apt.sw.be
* updates: ftp.tudelft.nl
Excluding Packages from CentOS / Red Hat Enterprise Linux 5 - atomicrocketturtle.com
Finished
Excluding Packages from CentOS / Red Hat Enterprise Linux
Finished
Excluding Packages from CentOS-5 - Base
Finished
Excluding Packages from RHEL 5 - RPMforge.net - dag
Finished
Excluding Packages from CentOS-5 - Updates
Finished
============================================================================================================= Matched: greenbone ==============================================================================================================
greenbone-security-assistant.x86_64 : GSA
openvas-manager.x86_64 : The Open Vulnerability Assessment (OpenVAS) Manager

I understand this package is not in the atomic repositories and I don't need it for remote web scans?
Post Reply