search

Secure-Compliance-Solutions-LLC / GVM-Docker

Greenbone Vulnerability Management Docker Image with OpenVAS
https://securecompliance.gitbook.io/projects/
MIT License
246 stars 91 forks source link

[Bug] TLSv1.1 on gsad-https #295

Closed webexppvcp closed 2 years ago

webexppvcp commented 2 years ago

Describe the bug The interface (port 8443 gsad-https) is sensitive to the NVT 1.3.6.1.4.1.25623.1.0.117274: TLS 1.1 must be deprecated

To Reproduce Steps to reproduce the behavior:

  1. Scan OpenVAS himself
  2. See result

Expected behavior Add -VERS-TLS1.1 in the gnutls-priorities arg of the command of gsad-https in the /etc/supervisord.conf (like gvmd)

Screenshots Scan Result

Image in use:

        "Id": "sha256:ed6308f4227f0153ea0c4df5c0f648fd7064eb12c0c96331f996e4aed026e050",
        "RepoTags": [
            "securecompliance/gvm:latest"
        ],
        "RepoDigests": [
            "securecompliance/gvm@sha256:b11df7b3ec5416d6409920ea2400d7ad65a193ae3bd077a13b2dbc1dead4939a"
        ],
        "Parent": "",
        "Comment": "buildkit.dockerfile.v0",
        "Created": "2021-08-08T20:29:21.015414376Z",
Dexus commented 2 years ago

This is already fixed in the dev branche.