Closed e-alfred closed 7 years ago
mikesplain
commented
7 years ago Hi @e-alfred, we certainly can add some docs here for that. For now, the best option is to pull down a new version of the container (we try to rebuild every few days to give you the latest), or follow the directions on the OpenVAS site.
mikesplain
commented
7 years ago You should be able to run that command by exec'ing into the container like this if you're not familiar:
docker exec -it <docker container id> bash
greenbone-nvt-syncHi @e-alfred did the above help accomplish what you needed? If so I'll add it to the docs but wanted to check back in first! Thanks!
carlmolemans
commented
7 years ago i ran all the sync commands and restarted all the services for openvas but i still do not get the latest nvts as shown on the greenbone website https://secinfo.greenbone.net/
however it does detect the exact same amount at the time of writing; 53429. See step 1 checker below.
Step 1: Checking OpenVAS Scanner ... OK: OpenVAS Scanner is present in version 5.1.0. OK: redis-server is present in version v=3.0.6. OK: scanner (kb_location setting) is configured properly using the redis-server socket: /var/run/redis/redis.sock OK: redis-server is running and listening on socket: /var/run/redis/redis.sock. OK: redis-server configuration is OK and redis-server is running. OK: NVT collection in /var/lib/openvas/plugins contains 52863 NVTs. WARNING: Signature checking of NVTs is not enabled in OpenVAS Scanner. SUGGEST: Enable signature checking (see http://www.openvas.org/trusted-nvts.html). OK: The NVT cache in /var/cache/openvas contains 53429 files for 52863 NVTs. Step 2: Checking OpenVAS Manager ... OK: OpenVAS Manager is present in version 7.0.0. OK: OpenVAS Manager database found in /var/lib/openvas/mgr/tasks.db. OK: Access rights for the OpenVAS Manager database are correct. OK: sqlite3 found, extended checks of the OpenVAS Manager installation enabled. OK: OpenVAS Manager database is at revision 184. OK: OpenVAS Manager expects database at revision 184. OK: Database schema is up to date. OK: OpenVAS Manager database contains information about 52862 NVTs. OK: At least one user exists. OK: OpenVAS SCAP database found in /var/lib/openvas/scap-data/scap.db. OK: OpenVAS CERT database found in /var/lib/openvas/cert-data/cert.db. OK: xsltproc found. Step 3: Checking user configuration ... WARNING: Your password policy is empty. SUGGEST: Edit the /etc/openvas/pwpolicy.conf file to set a password policy. Step 4: Checking Greenbone Security Assistant (GSA) ... OK: Greenbone Security Assistant is present in version 7.0.1. OK: Your OpenVAS certificate infrastructure passed validation. Step 5: Checking OpenVAS CLI ... OK: OpenVAS CLI version 1.4.5. Step 6: Checking Greenbone Security Desktop (GSD) ... SKIP: Skipping check for Greenbone Security Desktop. Step 7: Checking if OpenVAS services are up and running ... OK: netstat found, extended checks of the OpenVAS services enabled. OK: OpenVAS Scanner is running and listening on a Unix domain socket. OK: OpenVAS Manager is running and listening on a Unix domain socket. OK: Greenbone Security Assistant is running and listening on all interfaces. WARNING: Greenbone Security Assistant is listening on port 4000, which is NOT the default port! SUGGEST: Ensure Greenbone Security Assistant is listening on one of the following ports: 80, 443, 9392. Step 8: Checking nmap installation ... WARNING: Your version of nmap is not fully supported: 7.01 SUGGEST: You should install nmap 5.51 if you plan to use the nmap NSE NVTs. Step 10: Checking presence of optional tools ... OK: pdflatex found. OK: PDF generation successful. The PDF report format is likely to work. OK: ssh-keygen found, LSC credential generation for GNU/Linux targets is likely to work. OK: rpm found, LSC credential package generation for RPM based targets is likely to work. OK: alien found, LSC credential package generation for DEB based targets is likely to work. OK: nsis found, LSC credential package generation for Microsoft Windows targets is likely to work.
mikesplain
commented
7 years ago @carlmolemans Ahh yes that makes sense. Can you try running openvasmd --rebuild --progress as well after?
ybudimirov
commented
7 years ago @mikesplain
Hi Mike!
docker run -d -p 443:443 -v $(pwd)/data:/var/lib/openvas/mgr/ --name openvas mikesplain/openvas
docker exec -it $(docker ps|grep "mikesplain/openvas"|cut -d" " -f1) /bin/bash
root@0980b00ce461:/# greenbone-nvt-sync
...
sent 49,986 bytes received 6,064,337 bytes 643,612.95 bytes/sec
total size is 266,156,233 speedup is 43.53
root@0980b00ce461:/# openvasmd --rebuild --progress
Rebuilding NVT cache... done.Extras - Feed Status Changed from: Too old (15 days) to: Too old (14 days)
It seems works. Thank you!
mikesplain
commented
7 years ago Added! Thanks!
Hello,
it would be great to have documentation on how to update the feeds inside the container. In the "Feed Status" page I can only see this:
Too old (13 days) - Please check the automatic synchronization of your system