[Openvas-discuss] Using nikto NASL

Juan José Pavlik Salles jjpavlik at gmail.com
Thu Dec 15 18:13:23 CET 2011 

Hi!! well after some test i think i made it work. Actually i think my
problem was the target i was testing. This is what i did:

root at openvas:~/tools/pruebas# head ../../.bashrc
# ~/.bashrc: executed by bash(1) for non-login shells.
# see /usr/share/doc/bash/examples/startup-files (in the package bash-doc)
# for examples
*export
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
*
*alias sudo="sudo env PATH=$PATH"*

And a symlink:

root at openvas:~/tools/pruebas# ll /bin/nikto
*lrwxrwxrwx 1 root root 40 2011-12-14 00:50 /bin/nikto ->
/root/tools/pruebas/nikto-2.1.4/nikto.pl**

One more thing, i changed the timeout value for this pluing to 1200 sec.
(20 minutes), because it was taking too long. I also changed the default
timeout to 600 sec.
There's a target that don't show me niktos scan, but in other targets it
works great. I hope this helps you.

2011/12/15 Allon Moritz - First Security <allon.moritz at first-security.com>

> Could you find a solution for this issue, because I’ve  experienced the
> same behavior…..****
>
> ** **
>
> *Von:* openvas-discuss-bounces at wald.intevation.org [mailto:
> openvas-discuss-bounces at wald.intevation.org] *Im Auftrag von *Juan José
> Pavlik Salles
> *Gesendet:* Mittwoch, 14. Dezember 2011 04:53
> *An:* Sébastien AUCOUTURIER
> *Cc:* openvas-discuss at wald.intevation.org
> *Betreff:* Re: [Openvas-discuss] Using nikto NASL****
>
> ** **
>
> I just lunched nikto.nasl manually and got this:
>
> root at openvas:/var/lib/openvas/plugins# openvas-nasl -t webserver1
> nikto.nasl -X
> ...
> host\n+ End Time:           2011-12-15 00:46:57 (*736 seconds*)\n---------------------------------------------------------------------------\n+
> 1 host(s) tested\n;*
> ']: Socket operation on non-socket
> [20077] plug_set_key:internal_send(0)['3 Success/(null)=1;
> ']: Socket operation on non-socket*
>
> First thing: it took 736 secods, more than 10 minutes, when the defaulr
> timeout is 320 seconds.
> Second thing: what about the last 3 lines, is it normal?
>
> My first idea is to set a bigger plugin timeout in openvas and see what
> happens.****
>
> El 14 de diciembre de 2011 00:17, Juan José Pavlik Salles <
> jjpavlik at gmail.com> escribió:****
>
> Well... "Nikto could not be found in your system path." is back!!! what
> did i do? i removed all the nikto symlinks and copies i had in my $PATH.
> This make me think openvas did found nikto but for some "unknown at least
> yet" reason it's not working properly, maybe a timeout a parameter error,
> no clue at all. Tomorrow i'm gonna make more tests and see what happens.**
> **
>
> El 13 de diciembre de 2011 20:22, Juan José Pavlik Salles <
> jjpavlik at gmail.com> escribió:****
>
> ** **
>
> I've removed and updated the plugins tons of times, but nikto doesn't
> work. Today i removed all the tasks i had created, and i am trying with new
> tasks, but nikt still doesn't show up in my reports. I looked in the scan
> configs and it is activated Nikto NASL. ****
>
> ** **
>
> 2011/12/13 Sébastien AUCOUTURIER <s.aucouturier at itrust.fr>****
>
> Juan,
> you can try to update plugin feed again, may be you modify nikto.nasl by
> editing ? this way nikto.nasl.asc does not match anymore with nikto.nasl,
> and  this prevent nikto.nasl to be execute.
> Just an idea .
>
>
> Le 12/13/2011 12:07, Juan José Pavlik Salles a écrit : ****
>
> Thanks Sébastien! i just tried installing nikto as you did, moving
> everything to /usr/local/bin/ and configuring /etc/nikto.conf, but nothing
> new. It's like openvas never sees nikto.nasl in the plugins directory,
> although it's there: ****
>
> ** **
>
>  root at openvas:~# ls /var/lib/openvas/plugins/nikto.nasl* -l ****
>
> -rw-r--r-- 1 root root 4610 2011-11-22 10:09
> /var/lib/openvas/plugins/nikto.nasl****
>
> -rw-r--r-- 1 root root  198 2011-11-22 10:09
> /var/lib/openvas/plugins/nikto.nasl.asc****
>
> root at openvas:~# ****
>
> ** **
>
> It's getting really anoying this, i wish i could find a solution. ****
>
> ** **
>
> 2011/12/13 Sébastien AUCOUTURIER <s.aucouturier at itrust.fr>****
>
> my two cents,
> with openvas4 (lib:4-0-6, scanner:3.2.5, nvt:2011121254), and openvas5:
> (beta2 for scanner and lib)
>
> i install nikto ugly way ..  moving  /opt/nikto-2-0-4/*  to  /usr/local/bin
> and i modify nikto.conf, to specify nikto plugins directory location.
> (/usr/local/bin/plugins)
>
> - running with 'openvas-nasl nikto.nasl -t target -T -' ,  nikto report
> was shown OK on stderr.
>
> - running through gsad, in openvassd.dump file, i got broken pipe
> during nikto report writes and No Ouputs in the results.
>
> i can help running more tests if needed.
>
> --
> | Sébastien AUCOUTURIER | Software Design Engineer Lead |
> | ITrust | 55 rue l'Occitane BP 67303 31673 LABEGE CEDEX
> | Email: s.aucouturier at itrust.fr | Fixe Sdt. 05.67.34.67.80 | Fax.
> 09.80.08.37.23
> | IT Security Services & SaaS Editor  |****
>
>
> _______________________________________________
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss****
>
>
>
> ****
>
> ** **
>
> --
> Pavlik Juan José****
>
>
>
>
> ****
>
> -- ****
>
> | Sébastien AUCOUTURIER | Software Design Engineer Lead | ****
>
> | ITrust | 55 rue l'Occitane BP 67303 31673 LABEGE CEDEX****
>
> | Email: s.aucouturier at itrust.fr | Fixe Sdt. 05.67.34.67.80 | Fax. 09.80.08.37.23****
>
> | IT Security Services & SaaS Editor  | ****
>
>
> _______________________________________________
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss****
>
>
>
>
> --
> Pavlik Juan José****
>
>
>
>
> --
> Pavlik Juan José****
>
>
>
>
> --
> Pavlik Juan José****
>
> _______________________________________________
> Openvas-discuss mailing list
> Openvas-discuss at wald.intevation.org
> http://lists.wald.intevation.org/mailman/listinfo/openvas-discuss
>
>


-- 
Pavlik Juan José
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20111215/e01564e5/attachment-0001.htm

More information about the Openvas-discuss mailing list