[Openvas-discuss] GSA does not start the application

Ryan Schulze security at dopefish.de
Tue Nov 22 18:22:09 CET 2011


*Found a workaround*

Matthew kindly pointed me in the right direction (thanks), and I did 
some fiddling with libmicrohttpd today. Older versions of libmicrohttpd 
seemed to still work with the latest GSA stable version (2.0.1-1), so I 
started walking through versions and the latest working version of 
libmicrohttpd  I found is:
libmicrohttpd-0.9.15, it will build the libmicrohttpd.so.10.13.0 library 
which should be symlinked to libmicrohttpd.so.10

libmicrohttpd-0.9.16 unfortunately also generates a 
libmicrohttpd.so.10.13.0, so if you are getting the library from 
packages for your distro either be sure you have the right one or just 
grab the sources from 0.9.15, compile and then copy the library to the 
destination server (assuming that there are no build tools on production 
servers)

Website for libmicrohttpd is http://www.gnu.org/s/libmicrohttpd/
and the download for 0.9.15 is 
ftp://ftp.gnu.org/gnu/libmicrohttpd/libmicrohttpd-0.9.15.tar.gz

./configure && make && make check
And if all goes well your library should be in 
./src/daemon/.libs/libmicrohttpd.so.10.13.0

The error messages in the console also exist with this version, but the 
website works fine. I only have Ubuntu servers in our environment (LTS 
10.04), so I'm not sure if/how other distros are affected, but hope the 
infos help anyone else facing the same problems.

Ryan


On 11/21/2011 2:52 PM, Ryan Schulze wrote:
> Hi,
>
> I'm having the same problem here since a recent update of the system
> (including greenbone-security-assistant and libmicrohttpd10). There have
> been a few emails about this on the list that may be related.
>
> Unfortunately
> http://download.opensuse.org/repositories/security:/OpenVAS:/STABLE:/v4/xUbuntu_10.04/amd64/
> has no "older version" I could downgrade back to.
>
> Login impossible, after entering the credentials the logs say everything
> was fine and successful:
> "event auth:MESSAGE:2011-11-21 19h47.03 utc:12120: Authentication
> success for user admin (83e4a106-ec85-451a-929a-1b17acbf45b8)"
>
> .. but nothing happens and the browser is loading forever without
> anything happening. CPU usage of gsad goes to 100% after trying to login
> and the following messages "spam" my console:
>
> "Error: received handshake message out of context"
> and
> "Failed to receive data: A TLS packet with unexpected length was received."
>
> The GSD still works fine (although the GUI is not as comfortable as the
> GSA), just the GSA is affected. I wasn't able to find out anything
> useful with strace and now have no idea what else I could do to remedy
> the situation :-(
>
> Does anyone have any ideas or solutions to this problem?
>
>
>
>
> On 11/18/2011 11:56 AM, chris wrote:
>> I got the GSA startet:
>> ---8<---
>> root      2723 98.7  0.0  35192  1776 pts/1    Sl   17:57
>> 47:10 /usr/sbin/gsad --listen=127.0.0.1 --port=9392 --alisten=127.0.0.1
>> --aport=9393 --mlisten=127.0.0.1 --mport=9390
>> ---8<---
>> After login
>> https://localhost:9392 (firefox 7.0.1)
>> I get the login page, but after user / password it loads for a quarter
>> an hour and nothing different shows up.
>>
>> Several messages in /var/log/openvas/openvasmd.log
>> ---8<---
>> event auth:MESSAGE:2011-11-18 17h50.26 utc:3394: Authentication success
>> for user admin (fbff6b5c-85f5-4327-893e-28ff55053aa4)
>> event auth:MESSAGE:2011-11-18 17h50.49 utc:3396: Authentication success
>> for user admin (fbff6b5c-85f5-4327-893e-28ff55053aa4)
>> Failed to send data: Success
>> event auth:MESSAGE:2011-11-18 17h51.23 utc:3404: Authentication success
>> for user admin (fbff6b5c-85f5-4327-893e-28ff55053aa4)
>> ---8<---
>>
>> The CPU is on 100% (each core)
>>
>> Here the output of the top command:
>> ---8<---
>> top - 18:53:41 up  1:03,  8 users,  load average: 5.10, 3.18, 2.17
>> Tasks: 183 total,   1 running, 180 sleeping,   0 stopped,   2 zombie
>> Cpu(s): 31.3%us, 68.7%sy,  0.0%ni,  0.0%id,  0.0%wa,  0.0%hi,  0.0%si,
>> 0.0%st
>> Mem:   4119468k total,  1585524k used,  2533944k free,    98856k buffers
>> Swap:  3156768k total,        0k used,  3156768k free,   851096k cached
>> PID to kill:
>>     PID USER      PR  NI  VIRT  RES  SHR S %CPU %MEM    TIME+
>> COMMAND
>>    2723 root      20   0 86156 3656 1364 S  193  0.1  60:57.86
>> gsad
>>    2651 chris     20   0  571m 199m  32m S    4  5.0   2:31.10 firefox
>> ...
>> ---8<---
>>
>> Is that on purpose?
>> Chris
>>



More information about the Openvas-discuss mailing list