From michael.wiegand at intevation.de  Fri Feb  6 12:35:07 2009
From: michael.wiegand at intevation.de (Michael Wiegand)
Date: Fri, 6 Feb 2009 12:35:07 +0100
Subject: [Openvas-announce] openvas-libraries 2.0.1 released
Message-ID: <20090206113507.GC23393@intevation.de>

Hello,

The OpenVAS developers are happy to announce the release of
openvas-libraries 2.0.1.

This is the first maintenance release of the openvas-libraries module
for the Open Vulnerability Assessment System (OpenVAS) 2.0 series.

It fixes a number of issues discovered after the release of
openvas-libraries 2.0.0 and introduces support for upcoming features.
Thanks to the continuing audit of the code, a number of obsolete, unused
and/or unnecessary functions were identified and removed. The amount and
the quality of the source code documentation has been improved as well.

Effect when installing this version: The cache of NVT descriptions
(located in plugin_folder/.desc/) will be rebuild at next start of
openvasd.  The cache files used to have the suffix ".desc" instead of
".nasl", e.g.  "x.desc" corrsponds to "x.nasl".  Now, the suffix ".desc"
is appended, e.g.  "x.nasl.desc" corresponds to "x.nasl".  This also
prevents that e.g. "x.nasl" and "x.nes" (or "x.oval") will overwrite
each others' cache file.  Recommendation: Clean the entire cache
directory before restarting openvasd. If you don't do this, the .desc/
directory will contain all cache files twice.  Other than unnecessary
disk space consumption this has no bad effect.

Main changes since 2.0.0:
* Renamed caching files to conflict-free scheme
* Prepared support for sub-directories in plugins_folder in accordance with
  Change Request #24 (http://www.openvas.org/openvas-cr-24.html)
* Support for improved management of SSH credentials has been added in
  accordance with Change Request #20 (http://www.openvas.org/openvas-cr-20.html)
* Established automated source code documentation. HTML-Version is available
  under http://www.openvas.org/src-doc/openvas-libraries/2.0.1/index.html

Bugfixes:
* A configuration issue which caused the build process to fail on Mac OS X has
  been fixed. (Solves: #761)
* Missing includes which caused the build process to fail on Darwin and NetBSD
  have been added. (Solves: #860, #862)

Many thanks to everyone who has contributed to this release: Tim Brown,
Stjepan Gros, Jan-Oliver Wagner, Felix Wolfsteller and Michael Wiegand.

Regards,

	Michael Wiegand

-- 
Michael Wiegand |  OpenPGP key: D7D049EC  |  http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998
Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner


From michael.wiegand at intevation.de  Thu Feb 12 15:58:45 2009
From: michael.wiegand at intevation.de (Michael Wiegand)
Date: Thu, 12 Feb 2009 15:58:45 +0100
Subject: [Openvas-announce] openvas-libnasl 2.0.1 released
Message-ID: <20090212145845.GC27019@intevation.de>

Hello,

The OpenVAS developers are happy to announce the release of
openvas-libnasl 2.0.1.

This is the first maintenance release of the openvas-libnasl module for the
Open Vulnerability Assessment System (OpenVAS) 2.0-series.

It fixes some issues discovered after the release of openvas-libnasl
2.0.0 and introduces support for upcoming features. Thanks to the continuing
audit of the code, a number of obsolete, unused and/or unnecessary functions
were identified and removed.

Effect when installing this version: openvas-libnasl 2.0.1 requires
openvas-libraries 2.0.1. Please read effects of the openvas-libraries 2.0.1
release.

Main changes since 2.0.0:
* Prepared support for sub-directories in plugins_folder in accordance with
  Change Request #24 (http://www.openvas.org/openvas-cr-24.html)
* Established automated source code documentation. HTML-Version is available
  under http://www.openvas.org/src-doc/openvas-libnasl/current/index.html

Bugfixes:
* A configuration issue which caused the build process to fail when explicitly
  configured to not build static libraries (--disable-static) has been fixed.
  (Solves: #855)

Many thanks to everyone who has contributed to this release: Tim Brown,
Stjepan Gros, Jan-Oliver Wagner, Felix Wolfsteller and Michael Wiegand.

Regards,

  Michael Wiegand

-- 
Michael Wiegand |  OpenPGP key: D7D049EC  |  http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998
Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner


From michael.wiegand at intevation.de  Tue Feb 17 14:25:21 2009
From: michael.wiegand at intevation.de (Michael Wiegand)
Date: Tue, 17 Feb 2009 14:25:21 +0100
Subject: [Openvas-announce] openvas-server 2.0.1 released
Message-ID: <20090217132521.GD29628@intevation.de>

Hello,

The OpenVAS developers are happy to announce the release of
openvas-server 2.0.1.

This is the first maintenance release of the openvas-server module for the
Open Vulnerability Assessment System (OpenVAS) 2.0-series.

It fixes some issues discovered after the release of openvas-server
2.0.0 and introduces support for new features. Thanks to the continuing
audit of the code, a number of obsolete, unused and/or unnecessary functions
were identified and removed.

Effects when installing this version:

* Dependencies: openvas-server 2.0.1 requires openvas-libraries 2.0.1 and
openvas-libnasl 2.0.1. You need to install these prior to openvas-server 2.0.1.

* Cache files: Effects of openvas-libraries 2.0.1 are changes in the
cache file management. With 2.0.1 release of openvas-server it is
possible to specify a new location for the cache folder. If you will
use a new location, then the effects described for openvas-libraries
do not apply anymore (see also below regarding cache folder).

* New default port of the server: Please be aware that openvas-server
now listens on port 9390 by default since this port has recently been allocated
by IANA for the Openvas Transport Protocol (OTP). If you want to continue to
use the old port 1241, you have to specify the port you want openvasd to
listen on, for example by starting the server with "openvasd -p 1241".
If you don't specify this, it might happen that at next boot of your
system (or other restart of openvasd), the service is available
at a new port and you need to update the connection information
in your OpenVAS-Client.

Main changes since 2.0.0:

* Support for sub-directories in plugins_folder in accordance with
  Change Request #24 (http://www.openvas.org/openvas-cr-24.html).
* Established automated source code documentation. HTML-Version is available
  under http://www.openvas.org/src-doc/openvas-server/current/index.html
* Openvas-server now uses the IANA-assigned port 9390 for communication
  with the client.
* It is now possible to start openvas-server without root privileges. Note that
  a number of NVTs which rely on operations requiring root privileges (like
  packet forgery) will not work under these circumstances.
* The openvasd-config script now returns the values for sysconfdir, libdir and
  sbindir set at compile time.
* The new server preference "cache_folder" allows you to define the location
  of the cache ($plugins_folder/.desc in previous versions). The default value
  for this preference is /var/cache/openvas for new OpenVAS installations.
  Existing installations need to add cache_folder = /var/cache/openvas
  manually to openvasd.conf and make sure the directory exists.
* The new server preference "include_folders" allows you to specify
  search paths for the NASL include directive. This aids the use of
  subdirectories for plugins. The default value for this preference is
  $plugins_folder to be compatible with the old "flat" (all in one directory)
  structure.
* Initial support for per-target SSH credentials settings has been added. Please
  note that you will need a new client (>= 2.0.2) and a new ssh_authorization.nasl file to
  use this feature.
* Having a directory structure in $plugins_folder is now supported. openvasd
  will recurse through the subdirectories in $plugins_folder.

Note: The OpenVAS NVT feed will not use the new features for subdirectories and
include paths as long as the OpenVAS 1.0.x and OpenVAS 2.0.0 releases are
supported. An exception might be OVAL support.

Bugfixes:

* The usage of the gettext support tool in support scripts like openvas-adduser
  did expect gettext.sh to be in /usr/bin, which prevented the scripts from
  working correctly on systems where this was not the case. The gettext usage
  has been made more robust. (Solves: #860)
* During startup, openvasd will now show the correct total number of plugins
  and not count signatures and other files anymore.
* The obsolete user-specific cache (.desc in
  /var/lib/openvas/users/USER/plugins/) is not created anymore.

Many thanks to everyone who has contributed to this release: Tim Brown,
Stjepan Gros (for subdirs feature), Joey Schulze, Jan-Oliver Wagner,
Felix Wolfsteller and Michael Wiegand.

Regards,

  Michael Wiegand

-- 
Michael Wiegand |  OpenPGP key: D7D049EC  |  http://www.intevation.de/
Intevation GmbH, Neuer Graben 17, 49074 Osnabr?ck | AG Osnabr?ck, HR B 18998
Gesch?ftsf?hrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner