search

Secure-Compliance-Solutions-LLC / GVM-Docker

Greenbone Vulnerability Management Docker Image with OpenVAS
https://securecompliance.gitbook.io/projects/
MIT License
246 stars 91 forks source link

Tag 21.4.0-v5: Missing default configurations? #315

Closed rroethof closed 2 years ago

rroethof commented 2 years ago

Discussed in https://github.com/Secure-Compliance-Solutions-LLC/GVM-Docker/discussions/283

Originally posted by **v1c5anchez** September 20, 2021 Dear all, I am currently using the image from tag [21.4.0-v5](https://github.com/Secure-Compliance-Solutions-LLC/GVM-Docker/tree/21.4.0-v5) and I think some of the default scan configurations are missing in the image. The list of default scan configuration provided by Greenbone can be found [here](https://docs.greenbone.net/GSM-Manual/gos-21.04/en/scanning.html#default-scan-configurations). Items: - Empty - Base - Discovery - Host Discovery - System Discovery - Full and fast - Full and fast ultimate - Full and very deep - Full and very deep ultimate However, when retrieving the ones included in the image, I get the following ones: - Base - Discovery - empty - Full and fast - Host Discovery - System Discovery Additionally, during container creation, the last lines in **/usr/local/var/log/gvmd/gvmd.log** are: ``` md manage: INFO:2021-09-20 13h24.34 utc:1328: Updating CERT-Bund CVSS max succeeded. md manage: INFO:2021-09-20 13h24.40 utc:1328: update_scap_end: Updating SCAP info succeeded md manage: INFO:2021-09-20 13h24.46 utc:1707: OSP service has different VT status (version 202109201100) from database (version (null), 0 VTs). Starting update ... md manage: INFO:2021-09-20 13h32.45 utc:1707: Updating VTs in database ... 75976 new VTs, 0 changed VTs md manage: INFO:2021-09-20 13h32.51 utc:1707: Updating VTs in database ... done (75976 VTs). event config:MESSAGE:2021-09-20 13h32.52 utc:1907: Scan config Full and fast (daba56c8-73ec-11df-a475-002264764cea) has been created by admin event config:MESSAGE:2021-09-20 13h32.52 utc:1907: Scan config Huawei Datacom Product Security Configuration Audit Guide (aab5c4a1-eab1-4f4e-acac-8c36d08de6bc) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config GaussDB 100 V300R001C00 Security Hardening Guide (Standalone) (61327f09-8a54-4854-9e1c-16798285fb28) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config Discovery (8715c877-47a0-438d-98a3-27c7a6ab2196) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config empty (085569ce-73ed-11df-83c3-002264764cea) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config System Discovery (bbca7412-a950-11e3-9109-406186ea4fc5) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config Host Discovery (2d3f051c-55ba-11e3-bf43-406186ea4fc5) has been created by admin event config:MESSAGE:2021-09-20 13h32.58 utc:1907: Scan config openGauss Security Hardening Guide (c2b049f9-6d3d-45be-871f-2252895ed9e8) has been created by admin event config:MESSAGE:2021-09-20 13h33.00 utc:1907: Scan config GaussDB Kernel V500R001C00 Security Hardening Guide (2eec8313-fee4-442a-b3c4-fa0d5dc83d61) has been created by admin event config:MESSAGE:2021-09-20 13h33.01 utc:1907: Scan config Base (d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663) has been created by admin event config:MESSAGE:2021-09-20 13h33.05 utc:1907: Scan config IT-Grundschutz Kompendium (c4b7c0cb-6502-4809-b034-8e635311b3e6) has been created by admin event config:MESSAGE:2021-09-20 13h33.07 utc:1907: Scan config EulerOS Linux Security Configuration (9f822ad3-9208-4e02-ac03-78dce3ca9a23) has been created by admin md main:MESSAGE:2021-09-20 14h32.30 utc:3109: Greenbone Vulnerability Manager version 21.4.0 (DB revision 242) ``` There are no listed **_full very and deep_** configurations, for example. Am I missing anything? Does the TAR file not contain these configurations? Thanks in advance. Kind regards.
Dexus commented 2 years ago

This is what we get from the community feed repo. There is nothing more as free feed.

Regards Josef

Von meinem iPhone gesendet

Am 26.11.2021 um 19:38 schrieb Ronny Roethof @.***>:

 Discussed in #283

Originally posted by v1c5anchez September 20, 2021 Dear all,

I am currently using the image from tag 21.4.0-v5 and I think some of the default scan configurations are missing in the image.

The list of default scan configuration provided by Greenbone can be found here. Items:

Empty Base Discovery Host Discovery System Discovery Full and fast Full and fast ultimate Full and very deep Full and very deep ultimate However, when retrieving the ones included in the image, I get the following ones:

Base Discovery empty Full and fast Host Discovery System Discovery Additionally, during container creation, the last lines in /usr/local/var/log/gvmd/gvmd.log are:

md manage: INFO:2021-09-20 13h24.34 utc:1328: Updating CERT-Bund CVSS max succeeded. md manage: INFO:2021-09-20 13h24.40 utc:1328: update_scap_end: Updating SCAP info succeeded md manage: INFO:2021-09-20 13h24.46 utc:1707: OSP service has different VT status (version 202109201100) from database (version (null), 0 VTs). Starting update ... md manage: INFO:2021-09-20 13h32.45 utc:1707: Updating VTs in database ... 75976 new VTs, 0 changed VTs md manage: INFO:2021-09-20 13h32.51 utc:1707: Updating VTs in database ... done (75976 VTs). event config:MESSAGE:2021-09-20 13h32.52 utc:1907: Scan config Full and fast (daba56c8-73ec-11df-a475-002264764cea) has been created by admin event config:MESSAGE:2021-09-20 13h32.52 utc:1907: Scan config Huawei Datacom Product Security Configuration Audit Guide (aab5c4a1-eab1-4f4e-acac-8c36d08de6bc) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config GaussDB 100 V300R001C00 Security Hardening Guide (Standalone) (61327f09-8a54-4854-9e1c-16798285fb28) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config Discovery (8715c877-47a0-438d-98a3-27c7a6ab2196) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config empty (085569ce-73ed-11df-83c3-002264764cea) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config System Discovery (bbca7412-a950-11e3-9109-406186ea4fc5) has been created by admin event config:MESSAGE:2021-09-20 13h32.55 utc:1907: Scan config Host Discovery (2d3f051c-55ba-11e3-bf43-406186ea4fc5) has been created by admin event config:MESSAGE:2021-09-20 13h32.58 utc:1907: Scan config openGauss Security Hardening Guide (c2b049f9-6d3d-45be-871f-2252895ed9e8) has been created by admin event config:MESSAGE:2021-09-20 13h33.00 utc:1907: Scan config GaussDB Kernel V500R001C00 Security Hardening Guide (2eec8313-fee4-442a-b3c4-fa0d5dc83d61) has been created by admin event config:MESSAGE:2021-09-20 13h33.01 utc:1907: Scan config Base (d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663) has been created by admin event config:MESSAGE:2021-09-20 13h33.05 utc:1907: Scan config IT-Grundschutz Kompendium (c4b7c0cb-6502-4809-b034-8e635311b3e6) has been created by admin event config:MESSAGE:2021-09-20 13h33.07 utc:1907: Scan config EulerOS Linux Security Configuration (9f822ad3-9208-4e02-ac03-78dce3ca9a23) has been created by admin md main:MESSAGE:2021-09-20 14h32.30 utc:3109: Greenbone Vulnerability Manager version 21.4.0 (DB revision 242) There are no listed full very and deep configurations, for example.

Am I missing anything? Does the TAR file not contain these configurations?

Thanks in advance.

Kind regards.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub, or unsubscribe.

rroethof commented 2 years ago

Ah thats a shame :( Thanks for clearing it up :)