From michael.wiegand at intevation.de Thu Apr 2 15:43:18 2009 From: michael.wiegand at intevation.de (Michael Wiegand) Date: Thu, 2 Apr 2009 15:43:18 +0200 Subject: [Openvas-announce] openvas-client 2.0.3 released Message-ID: <20090402134318.GF7500@intevation.de> Hello, The OpenVAS developers are happy to announce the release of openvas-client 2.0.3. This is the third maintenance release of the openvas-client module for the Open Vulnerability Assessment System (OpenVAS) 2.0-series. It fixes some issues discovered after the release of openvas-client 2.0.2 and introduces the new "Severity Override" Feature. This feature allows for example to maintain a list of false positives and apply it to subsequent scans. This works like a filter and thus the actual scan results remain untouched and can at any time be recovered. Code audit continued and a number of obsolete, unused and/or unnecessary functions were identified and removed. Effects when installing this version: * The version requirement for the GTK+ library has been raised from 2.4 to 2.6 to make sure all GTK+ functions used by OpenVAS-Client are indeed available. GTK+ 2.6 was released in December 2004, so all modern distributions should include at least this version. Main changes since 2.0.2: * A Severity Override Manager has been added, including right-mouse-button actions in the report to specific severity overrides easily. The original scan results will never be changed, so it is safe to test the severity overrides. * A new "Extras" menu has been added and collects all "managers": The LSC Credentials Manager, the Severity Override Manager and the SLAD Install Manager. * A bug which caused the client complain about missing files when starting a scan on a fresh installation has been fixed. * A bug which caused OpenVAS-Client not to be placed in the correct menu on certain distributions has been fixed (relevant for packagers). * OpenVAS-Client is now able to remember more than one server certificate. Many thanks to everyone who contributed to this release: Tim Brown, Laban Mwangi, Vlatko Kosturjak, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller. Regards, Michael Wiegand -- Michael Wiegand | OpenPGP: D7D049EC | Intevation GmbH - www.intevation.de Neuer Graben 17, 49074 Osnabr?ck, Germany | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: not available Url : http://lists.wald.intevation.org/pipermail/openvas-announce/attachments/20090402/a2522b2e/attachment.pgp From michael.wiegand at intevation.de Thu Apr 9 15:58:08 2009 From: michael.wiegand at intevation.de (Michael Wiegand) Date: Thu, 9 Apr 2009 15:58:08 +0200 Subject: [Openvas-announce] openvas-plugins 1.0.6 released Message-ID: <20090409135808.GD26070@intevation.de> Hello, The OpenVAS developers are happy to announce the release of openvas-plugins 1.0.6. This is a maintenance release of the openvas-plugins module for the Open Vulnerability Assessment System (OpenVAS). It fixes various issues discovered after the release of openvas-plugins 1.0.5 and adds a large number of new Network Vulnerability Tests (NVTs), now in total over 10,000. Many NVTs are being reactivated by adding mandatory dependencies - these dependencies were missing because they were subject of proprietary licensing and this were not inherited from Nessus. If you are using openvas-plugins 1.0.2 or earlier we strongly recommend that you upgrade to openvas-plugins 1.0.6. Openvas-plugins 1.0.2 and earlier contains a bug which results in plugins having incorrect ownership information after synchronization with openvas-nvt-sync. Depending on your configuration, this may result in plugins being writable by a normally unprivileged user. This issue is currently rendered ineffective by a workaround of the OpenVAS Feed Server, but this workaround may be removed in the near future. Openvas-plugins 1.0.3 or later is unaffected by this issue. We recommend that you run the openvas-nvt-sync script at least once after you have finished installing openvas-plugins 1.0.6 to make sure you are using the most up-to-date plugin collection. Please note that you will have to restart running OpenVAS server instances to make the new plugins visible to clients. Effects when installing this version: * A number of NVTs have been adjusted to provide inform if they were unable to complete their checks instead of failing silently. This may lead to larger reports depending on your individual configuration. * The synchronization script (openvas-nvt-sync) no longer preserves timestamps when synchronizing. This may cause the synchronization to take slightly longer depending on your installation. * Several so-called "C-Plugins" (suffix .nes) have been replaced by NASL equivalents. If you want to remove these deprecated NVTs, you should eliminate any *.nes file from your plugins directory before installing the new openvas-plugins 1.0.6. * If you are applying openvas-nvt-sync to be in sync with the OpenVAS NVT Feed, then you already have most of the changes and updates in your plugin directory. However, you should take care of removing the superfluous "C-Plugins" (see above). Main changes since 1.0.5: * More than 4,000 new NVTs have been added. * A large number of existing NVTs have been updated and improved. * The build environment has been updated. * The plugin_feed_info.inc file has been removed from the openvas-plugins module since it has been returned to its real purpose and is provided by security feed providers now. * A generator for Local Security Checks has been added. This tools was used to create NASL-scripts for OpenSUSE, Ubuntu, RedHat, Fedora and Mandriva back to January 1st, 2007. * Support for the improved SSH credential management available in openvas-server 2.0.1 and later has been added. * openvas-plugins can now be configured and installed without the --enable-install configuration option. * An install-minimal target has been added to the build target. This target will install openvas-plugins without any *.nasl and *.inc files which is useful for testing purposes or when synchronization with a security feed will occur anyway after installation. * Obsolete inline signatures have been removed from files which still contained them. * A number of obsolete NASL_LEVEL checks have been removed. * The following NVTs written in C have been replaced with NASL scripts: - ftp_write_dirs (by ftp_writeable_directories.nasl) - linux_tftp (by tftpd_detect.nasl and tftpd_dir_trav.nasl) - smad (by remote-smtp-smad.nasl) - nmap_wrapper (by nmap.nasl) - objectserver (by remote-sgi-objectserver.nasl) Many thanks to everyone who has contributed to this release: Chandrashekhar B, Tim Brown, Christian Eric Edjenguele, Vlatko Kosturjak, Michael Meyer, Thomas Reinke, Chandan S, Jan-Oliver Wagner, Michael Wiegand and Felix Wolfsteller. Regards, Michael Wiegand -- Michael Wiegand | OpenPGP: D7D049EC | Intevation GmbH - www.intevation.de Neuer Graben 17, 49074 Osnabr?ck, Germany | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 198 bytes Desc: not available Url : http://lists.wald.intevation.org/pipermail/openvas-announce/attachments/20090409/c4d1e8db/attachment.pgp From jan-oliver.wagner at intevation.de Thu Apr 9 16:31:00 2009 From: jan-oliver.wagner at intevation.de (Jan-Oliver Wagner) Date: Thu, 9 Apr 2009 15:31:00 +0100 Subject: [Openvas-announce] OpenVAS now beyond 10000 Network Vulnerability Tests Message-ID: <200904091631.03334.jan-oliver.wagner@intevation.de> Passing the 10000th Network Vulnerability Test (NVT) is a perfect occasion to report about the progress of the OpenVAS project[1]. In October 2008 the systematic development of new NVTs started with a base of around 5800 Tests. With the release of OpenVAS 2.0 in December 2008, the development was boosted and has now reached an average of 10 code updates per day. The public OpenVAS NVT Feed Service delivers 3-10 new vulnerability tests every day. The significantly grown and globally distributed developer team will gather at the second OpenVAS developers conference[2] July 9-12 2009 in Germany. During the conference features and a roadmap for OpenVAS 3.0 will be scheduled. The OpenVAS project is backed by a number of companies, which also supplement the project with professional services[3]. These companies include Greenbone Networks, SecPod, Intevation and SecuritySpace. "Reaching the professional enterprise market is a good indicator that OpenVAS gained maturity very fast" says Tim Brown, founder of the OpenVAS project. While OpenVAS 3.0 will likely appear in 2009, users of OpenVAS 1.0 should prepare to migrate as support for 1.0 will end during 2009. [1] www.openvas.org [2] www.openvas.org/openvas-devcon2.html [3] www.openvas.org/professional-services.html -- Dr. Jan-Oliver Wagner | ++49-541-335083-0 | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From jan-oliver.wagner at intevation.de Wed Apr 29 17:11:27 2009 From: jan-oliver.wagner at intevation.de (Jan-Oliver Wagner) Date: Wed, 29 Apr 2009 17:11:27 +0200 Subject: [Openvas-announce] OpenVAS user's workshop July, 8th 2009 in Germany Message-ID: <200904291711.31448.jan-oliver.wagner@intevation.de> Hello, a one day workshop (July 8th 2009) prior to the OpenVAS Developer Conference #2 (July 9th - 12th) will be conducted for OpenVAS users. The following topics will be covered: 1. OpenVAS architecture 2. Installation of OpenVAS on Linux systems 3. OpenVAS scanning OpenVAS features Creation of policies and running the scan Credentiated and Credential less scanning The OpenVAS knowledge base Logs Scanning different network devices: Windows, Unix Reports 4. OpenVAS Administration 5. Writing NASL plugins 6. OpenVAS integrated tools Price: EURO 300,- The money will be utilized to cover the travel costs for students and other private OpenVAS developers to join the OpenVAS developer's conference. The workshop is held in english language by Chandrashekhar B of the company SecPod (India). SecPod will not charge for this and so 100% of the money will help to physically gather a forceful developers team to prepare for OpenVAS 3.0. If you are interested and willing to register, please send a mail to openvas-devcon at intevation.de at the earliest confirming your attendance. Details on the workshop will also be updated here: http://www.openvas.org/openvas-devcon2.html Best regards Jan-Oliver Wagner -- Dr. Jan-Oliver Wagner | ++49-541-335083-0 | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner From jan-oliver.wagner at intevation.de Wed Apr 29 21:14:53 2009 From: jan-oliver.wagner at intevation.de (Jan-Oliver Wagner) Date: Wed, 29 Apr 2009 21:14:53 +0200 Subject: [Openvas-announce] OpenVAS NVT Feed Upcoming: Local Security Checks for HP-UX Message-ID: <200904292114.53808.jan-oliver.wagner@intevation.de> Hello, soon the OpenVAS NVT Feed will be extended by local security checks for HP-UX systems. In contrast to all other unixoid systems that are supported with local security checks, HP-UX is a proprietary plattform. Not all versions of HP-UX are available to the OpenVAS developers and thus the local security checks were not tested for all of them. We are in good hope they work, but would appreciate both, confirming feedback as well as problem reports from OpenVAS users scanning HP-UX systems. Best regards Jan-Oliver Wagner -- Dr. Jan-Oliver Wagner | ++49-541-335 08 30 | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998 Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner