[Openvas-commits] r5416 - trunk/openvas-packaging/openvas-plugins/debian/trunk/debian

scm-commit@wald.intevation.org scm-commit at wald.intevation.org
Wed Oct 7 00:57:45 CEST 2009 

Author: jfs
Date: 2009-10-07 00:57:45 +0200 (Wed, 07 Oct 2009)
New Revision: 5416

Added:
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README.source
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/docs
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/manpages
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-nvt-sync.8
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.links
   trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.substvars
Log:
Added missing files for this release



Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1,22 @@
+
+Please note that the upstream maintainers no longer maintain this
+package and request users to upgrade the plugins using the 
+'openvas-nvt-sync' program.
+
+This package provides a set of basic plugins as well as the 'openvas-nvt-sync'
+program. Administrators should update their plugins right after installing this
+package through the script.
+
+The set of plugins provided by this package might be useful for users
+that are running OpenVAS in closed environments and without an Internet
+connection (or in a network which has limited access to the Internet). However,
+users are encouraged to download and install the full set since this package
+might not be updated frequently enough. 
+
+An out-of-date set of plugins (i.e. security checks) might lead to a "false
+sense of security". There might be open security holes in your network or
+systems which openvas-server might not detect if using outdated plugins.
+
+
+-- Sun Sep 20 04:42:18 CEST 2009
+Javier Fernandez-Sanguino

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README.source
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README.source	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/README.source	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1,6 @@
+The new original tarball can be created by removing the non-free plugins
+listed in audit/REMOVED-PLUGINS file and removing the packaging/subdirectory
+
+For the rest we use dpatch for patch handling inside our package(s). Please
+see /usr/share/doc/dpatch/README.source.gz (if you have dpatch installed) for
+documentation on how to use dpatch.

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/docs
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/docs	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/docs	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1,2 @@
+debian/README
+debian/README.source

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/manpages
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/manpages	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/manpages	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1 @@
+debian/openvas-nvt-sync.8

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-nvt-sync.8
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-nvt-sync.8	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-nvt-sync.8	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1,58 @@
+.\"                                      Hey, EMACS: -*- nroff -*-
+.TH OPENVAS-NVT-SYNC 8 "Septmeber 2008" "The OpenVAS Project" "User Manuals"
+.SH NAME
+openvas-nvt-sync \- updates the OpenVAS security checks 
+.SH SYNOPSIS
+.B openvas-nvt-sync 
+.SH DESCRIPTION
+The 
+.B OpenVAS Security Scanner
+performs several security checks, each of them being coded as an external
+plugin coded in NASL. As new security holes are published every day, new
+plugins appear on the OpenVAS site (www.openvas.org)
+.br
+The script 
+.B openvas-nvt-sync
+will fetch all the newest security checks for you and install them at the proper
+location. Once this is done you will need to restart openvas-server(8) s
+so that it loads them and uses them for new security scans.
+
+.br
+.B openvas-nvt-sync
+uses rsync(1) and  md5sum(1) to do its job. In order to download the
+new plugins the machine where the script runs needs to have
+access to rsync.openvas.org using the rsync protocol (TCP/UDP port 873).
+
+.SH SECURITY NOTES
+.B openvas-nvt-sync 
+uses rsync(1) to retrieve the archive of the new plugins. The scripts
+provided by the OpenVAS project might 
+.B not be signed
+\. Consequently, if somewhere where to poison your DNS server and force this
+script to retrieve NASL plugins on another site he would force
+your OpenVAS server to execute NASL scripts when running security tests.
+Even if this might not do much harm (see the NASL reference guide
+for more information on that subject) you should be very careful
+when doing this.
+
+.SH SEE ALSO
+For more information see:
+.BR rsync(1),
+.BR openvasd(8)
+.BR openvas-client(1).
+.br
+There is more information available at
+.B /usr/share/doc/openvas-plugins
+on Debian systems.
+.PP
+You can find additional information about the OpenVAS project in
+http://www.openvas.org 
+			
+.SH AUTHOR
+This manual page was written by
+Javier Fern\['a]ndez-Sanguino Pe\[~n]a <jfs at debian.org>
+for the Debian GNU/Linux system (but may be used on other systems).
+.PP
+The 
+.B openvas-nvt-sync
+script was written by DN-Systems Enterprise Internet Solutions GmbH.

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.links
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.links	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.links	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1,4 @@
+usr/lib/openvas/plugins/find_service.nes var/lib/openvas/plugins/find_service.nes
+usr/lib/openvas/plugins/openvas_tcp_scanner.nes var/lib/openvas/plugins/openvas_tcp_scanner.nes
+usr/lib/openvas/plugins/ssl_ciphers.nes var/lib/openvas/plugins/ssl_ciphers.nes
+usr/lib/openvas/plugins/synscan.nes var/lib/openvas/plugins/synscan.nes

Added: trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.substvars
===================================================================
--- trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.substvars	2009-10-06 22:57:40 UTC (rev 5415)
+++ trunk/openvas-packaging/openvas-plugins/debian/trunk/debian/openvas-plugins.substvars	2009-10-06 22:57:45 UTC (rev 5416)
@@ -0,0 +1 @@
+shlibs:Depends=libc6 (>= 2.3), libgcrypt11 (>= 1.4.2), libglib2.0-0 (>= 2.12.0), libgnutls26 (>= 2.7.14-0), libopenvas2 (>= 2.0.4), libpcap0.8 (>= 1.0.0-1)

More information about the Openvas-commits mailing list