[Openvas-discuss] set up remote scanner.

Benjamin-Hugo LeBlanc benjamin-hugo.leblanc at owasp.org
Mon Aug 21 16:33:48 CEST 2017


I initially installed OpenVAS 9 on Ubuntu 16.04.2 LTS with the
ppa:mrazavi/openvas repo, not from the sources, so startup scripts and
configuration were all provided. My second install on Debian 8.9 from the
sources worked like a charm, though. I also may have done something wrong
the first time.

Regarding the "Satus Code 500: Internal Error" when checking for the
distant scanner, something doesn't work out when the Master manager sends a
verify scanner POST request to the Slave one; looks like the command
doesn't even leave the Master manager -- i.e. the Slave one doesn,t seem to
receive it. GSA returns that message while catching a
MHD-HTTP_INTERNAL_SERVER_ERROR.

      case 2:
        response_data->http_status_code = MHD_HTTP_INTERNAL_SERVER_ERROR;
        return gsad_message (credentials,
                             "Internal error", __FUNCTION__, __LINE__,
                             "An internal error occurred while
verifying a scanner. "
                             "It is unclear whether the scanner was
verified or not. "
                             "Diagnostics: Failure to send command to
manager daemon.",
                             "/omp?cmd=get_scanners", response_data);

Fortunately tasks do work fine nevertheless, so this is a minor issue.

Best,

-- 
Benjamin-Hugo LeBlanc  |  Clé PGP: 0x5823C22CAA9EE32F
Sécurité applicative et gestion des vulnérabilités technologiques
Québec, Canada | 418.446.1623    ᕦ(ò_óˇ)ᕤ


2017-08-21 9:55 GMT-04:00 Thijs Stuurman <Thijs.Stuurman at internedservices.nl
>:

> Strange, running on Ubuntu 16.04.2 LTS here (compiled from source).
>
> I never tried to verify the scanner… starting a task, seeing progress and
> a completion with report results was my way of testing.
>
> Now that I do try to verify the scanner; I also get the Error 500 .. can’t
> be really bothered to look in to it right now though, it works great!
>
>
>
> Currently my setup is battle testing my gvm-tools scheduler script, going
> very well!
>
>
>
> Thijs Stuurman
>
> Security Operations Center | KPN Internedservices
>
> thijs.stuurman at internedservices.nl | thijs.stuurman at kpn.com
>
> T: +31(0)299476185 <+31%20299%20476%20185> | M: +31(0)624366778
> <+31%206%2024366778>
>
> PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
>
> Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048
>
>
>
> W: https://www.internedservices.nl | L: http://nl.linkedin.com/in/
> thijsstuurman
>
>
>
> *Van:* Benjamin-Hugo LeBlanc [mailto:benjamin-hugo.leblanc at owasp.org]
> *Verzonden:* maandag 21 augustus 2017 15:44
> *Aan:* Thijs Stuurman <Thijs.Stuurman at internedservices.nl>
> *CC:* openvas-discuss at wald.intevation.org; blackcode at ukr.net
> *Onderwerp:* Re: [Openvas-discuss] set up remote scanner.
>
>
>
>
>
> The how-to in the blog post below didn't work out for me with OpenVAS 9 on
> Ubuntu 16.04 (didn't really investigate why). But a new OpenVAS 9 install
> from the sources on Debian 8.9 Jessie did the trick.
>
>
>
> Also, if you follow these steps on Jessie, don't get fooled by the 'Error
> 500' message when checking the distant scanner: as long as you provide the
> right cert, the task with the OMP slave scanner will run just fine.
>
>
>
> --
>
> Benjamin-Hugo LeBlanc  |  Clé PGP: 0x5823C22CAA9EE32F
>
> Sécurité applicative et gestion des vulnérabilités technologiques
>
> Québec, Canada | 418.446.1623 <(418)%20446-1623>    ᕦ(ò_óˇ)ᕤ
>
>
>
>
>
>
>
> 2017-08-16 4:04 GMT-04:00 Thijs Stuurman <Thijs.Stuurman@
> internedservices.nl>:
>
> See https://blog.haardiek.org/setup-openvas-as-master-and-slave.html
>
>
>
>
>
> Thijs Stuurman
>
> Security Operations Center | KPN Internedservices
>
> thijs.stuurman at internedservices.nl | thijs.stuurman at kpn.com
>
> T: +31(0)299476185 <+31%20299%20476%20185> | M: +31(0)624366778
> <+31%206%2024366778>
>
> PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/)
>
> Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048
>
>
>
> W: https://www.internedservices.nl | L: http://nl.linkedin.com/in/
> thijsstuurman
>
>
>
> *Van:* Openvas-discuss [mailto:openvas-discuss-bounces at wald.intevation.org]
> *Namens *blackcode at ukr.net
> *Verzonden:* dinsdag 15 augustus 2017 17:39
> *Aan:* openvas-discuss at wald.intevation.org
> *Onderwerp:* [Openvas-discuss] set up remote scanner.
>
>
>
> I want to install OpenVAS on main server (PC#1) and on other machine
> (PC#2) install only scanner, then I want to create task from OpenVAS
> manager in main server (PC#2) for scanner which installed on PC#2. For that
> purpose I created scanner on PC#2 as "openvassd --listen=0.0.0.0" and on
> PC#1 I created scanner with IP of PC#1, but it doesn't work. What I doing
> wrong? Help, please.
>
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.wald.intevation.org/pipermail/openvas-discuss/attachments/20170821/aa0cc5ec/attachment.html>


More information about the Openvas-discuss mailing list