Closed e-alfred closed 7 years ago
Hi @e-alfred, we certainly can add some docs here for that. For now, the best option is to pull down a new version of the container (we try to rebuild every few days to give you the latest), or follow the directions on the OpenVAS site.
You should be able to run that command by exec'ing into the container like this if you're not familiar:
docker exec -it <docker container id> bash
greenbone-nvt-sync
Hi @e-alfred did the above help accomplish what you needed? If so I'll add it to the docs but wanted to check back in first! Thanks!
i ran all the sync commands and restarted all the services for openvas but i still do not get the latest nvts as shown on the greenbone website https://secinfo.greenbone.net/
however it does detect the exact same amount at the time of writing; 53429. See step 1 checker below.
Step 1: Checking OpenVAS Scanner ... OK: OpenVAS Scanner is present in version 5.1.0. OK: redis-server is present in version v=3.0.6. OK: scanner (kb_location setting) is configured properly using the redis-server socket: /var/run/redis/redis.sock OK: redis-server is running and listening on socket: /var/run/redis/redis.sock. OK: redis-server configuration is OK and redis-server is running. OK: NVT collection in /var/lib/openvas/plugins contains 52863 NVTs. WARNING: Signature checking of NVTs is not enabled in OpenVAS Scanner. SUGGEST: Enable signature checking (see http://www.openvas.org/trusted-nvts.html). OK: The NVT cache in /var/cache/openvas contains 53429 files for 52863 NVTs. Step 2: Checking OpenVAS Manager ... OK: OpenVAS Manager is present in version 7.0.0. OK: OpenVAS Manager database found in /var/lib/openvas/mgr/tasks.db. OK: Access rights for the OpenVAS Manager database are correct. OK: sqlite3 found, extended checks of the OpenVAS Manager installation enabled. OK: OpenVAS Manager database is at revision 184. OK: OpenVAS Manager expects database at revision 184. OK: Database schema is up to date. OK: OpenVAS Manager database contains information about 52862 NVTs. OK: At least one user exists. OK: OpenVAS SCAP database found in /var/lib/openvas/scap-data/scap.db. OK: OpenVAS CERT database found in /var/lib/openvas/cert-data/cert.db. OK: xsltproc found. Step 3: Checking user configuration ... WARNING: Your password policy is empty. SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a password policy. Step 4: Checking Greenbone Security Assistant (GSA) ... OK: Greenbone Security Assistant is present in version 7.0.1. OK: Your OpenVAS certificate infrastructure passed validation. Step 5: Checking OpenVAS CLI ... OK: OpenVAS CLI version 1.4.5. Step 6: Checking Greenbone Security Desktop (GSD) ... SKIP: Skipping check for Greenbone Security Desktop. Step 7: Checking if OpenVAS services are up and running ... OK: netstat found, extended checks of the OpenVAS services enabled. OK: OpenVAS Scanner is running and listening on a Unix domain socket. OK: OpenVAS Manager is running and listening on a Unix domain socket. OK: Greenbone Security Assistant is running and listening on all interfaces. WARNING: Greenbone Security Assistant is listening on port 4000, which is NOT the default port! SUGGEST: Ensure Greenbone Security Assistant is listening on one of the following ports: 80, 443, 9392. Step 8: Checking nmap installation ... WARNING: Your version of nmap is not fully supported: 7.01 SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE NVTs. Step 10: Checking presence of optional tools ... OK: pdflatex found. OK: PDF generation successful. The PDF report format is likely to work. OK: ssh-keygen found, LSC credential generation for GNU/Linux targets is likely to work. OK: rpm found, LSC credential package generation for RPM based targets is likely to work. OK: alien found, LSC credential package generation for DEB based targets is likely to work. OK: nsis found, LSC credential package generation for Microsoft Windows targets is likely to work.
@carlmolemans Ahh yes that makes sense. Can you try running openvasmd --rebuild --progress
as well after?
@mikesplain
Hi Mike!
docker run -d -p 443:443 -v $(pwd)/data:/var/lib/openvas/mgr/ --name openvas mikesplain/openvas
docker exec -it $(docker ps|grep "mikesplain/openvas"|cut -d" " -f1) /bin/bash
root@0980b00ce461:/# greenbone-nvt-sync
...
sent 49,986 bytes received 6,064,337 bytes 643,612.95 bytes/sec
total size is 266,156,233 speedup is 43.53
root@0980b00ce461:/# openvasmd --rebuild --progress
Rebuilding NVT cache... done.
Extras - Feed Status Changed from: Too old (15 days) to: Too old (14 days)
It seems works. Thank you!
Added! Thanks!
Hello,
it would be great to have documentation on how to update the feeds inside the container. In the "Feed Status" page I can only see this:
Too old (13 days) - Please check the automatic synchronization of your system