API would listen on 9390 port, but i doesn't.
p.s. Why gsad listens 443 and 80 on centos 7? The /etc/sysconfig/gsad has no effect on gsad service.

Hello,

By executing a yum update, I get the new version of GVM unfortunately it is not possible for me to log into the web interface after the update with the following message:
"The Greenbone Vulnerability Manager service is not responding. This could be due to system maintenance. Please try again later, check the system status, or contact your system administrator".

Could you tell me how to update on a RHEL 8 system ?

Thanks for your help

Hello, We have openvas installed on a system running COS 7.5.1804 it has both the epel and atomic repos configured. When I perform a 'yum upgrade' I get a complaint about conflicting packages related or that are dependency of openvas.

Transaction check error: file /usr/lib/python2.7/site-packages/socks.py conflicts between attempted installs of python2-pysocks-1.6.8-5.el7.noarch and python-SocksiPy-1.00-4.el7.art.noarch file /usr/lib/python2.7/site-packages/socks.pyc conflicts between attempted installs of python2-pysocks-1.6.8-5.el7.noarch and python-SocksiPy-1.00-4.el7.art.noarch file /usr/lib/python2.7/site-packages/socks.pyo conflicts between attempted installs of python2-pysocks-1.6.8-5.el7.noarch and python-SocksiPy-1.00-4.el7.art.noarch

It looks like our system is trying to upgrade python2-pysocks and python34-idna from the epel repo which has a dependency of python-SocksiPy from the atomic repo. I currently only see the following two packages isntalled on this server.
# rpm -qa|grep -iE 'python2-pysocks|python34-idna|python-socksipy' python34-idna-2.1-1.el7.noarch python2-pysocks-1.6.7-1.el7.noarch

I should mention that we also have nessus installed on this server but the conflicts seem to be related to openvas 9.

I'm trying to setup OpenVAS with an Apache revese proxy (also a docker image):

openvas:
  container_name: openvas
  environment:
   - OV_PASSWORD=xxx
   #- OV_UPDATE=yes
  image: atomicorp/openvas:latest
  networks:
   - compose
  restart: always
  volumes:
   - /etc/localtime:/etc/localtime:ro
   - /opt/openvas/:/var/lib/openvas/mgr

If I want to connect via browser I get this warning and no connection:

gsad main:WARNING:2018-12-23 21h39.31 utc:315: MHD: Error: received handshake message out of context

I read something about ALLOW_HEADER_HOST for gsad but this doesn't seem to be a viable option.
Any ideas?

I have no task running and this error is coming up. How can I stop the unseen task?

Please update the packet would be very nice.

Please have a look here for further info's:

Upgrade to GVMD 10
Still cant get gsad to start
[root@openvas ~]# systemctl status gsad
● gsad.service - Greenbone Security Assistant (OpenVAS)
Loaded: loaded (/usr/lib/systemd/system/gsad.service; enabled; vendor preset: disabled)
Active: failed (Result: start-limit) since Mon 2019-04-29 23:37:52 EDT; 16min ago
Process: 6943 ExecStart=/usr/sbin/gsad $OPTIONS (code=exited, status=0/SUCCESS)
Main PID: 6946 (code=exited, status=1/FAILURE)
Apr 29 23:37:51 openvas. systemd[1]: Unit gsad.service entered failed state.
Apr 29 23:37:51 openvas. systemd[1]: gsad.service failed.
Apr 29 23:37:52 openvas. systemd[1]: gsad.service holdoff time over, scheduling restart.
Apr 29 23:37:52 openvas.systemd[1]: Stopped Greenbone Security Assistant (OpenVAS).
Apr 29 23:37:52 openvas. systemd[1]: start request repeated too quickly for gsad.service
Apr 29 23:37:52 openvas.systemd[1]: Failed to start Greenbone Security Assistant (OpenVAS).
Apr 29 23:37:52 openvassystemd[1]: Unit gsad.service entered failed state.
Apr 29 23:37:52 openvas. systemd[1]: gsad.service failed.
I get that GVMD replaces GSAD? right?
Well GVMD starts but I still cant get my weblink to load

I have installed using the atomic repo on a fresh centos 8 installation with SELinux disabled.
attempts to start the openvas-scanner service are failing.
in /var/log/messages:
openvas-scanner.service: Failed to execute command: No such file or directory
openvas-scanner.service: Failed at step EXEC spawning /usr/sbin/openvassd: No such file or directory

used the readme to install on centos 8 but when trying to create a task i get
"Failed to find config 'daba56c8-73ec-11df-a475-002264764cea' ".
looking in /var/lib/gvm/data-objects i see the files in there. see below.
what could be wrong?

/var/lib/gvm/data-objects
/var/lib/gvm/data-objects/gvmd
/var/lib/gvm/data-objects/gvmd/20.08
/var/lib/gvm/data-objects/gvmd/21.04
/var/lib/gvm/data-objects/gvmd/feed.xml
/var/lib/gvm/data-objects/gvmd/sha256sums
/var/lib/gvm/data-objects/gvmd/sha256sums.asc
/var/lib/gvm/data-objects/gvmd/timestamp
/var/lib/gvm/data-objects/gvmd/20.08/configs
/var/lib/gvm/data-objects/gvmd/20.08/port_lists
/var/lib/gvm/data-objects/gvmd/20.08/report_formats
/var/lib/gvm/data-objects/gvmd/20.08/configs/base-d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/discovery-8715c877-47a0-438d-98a3-27c7a6ab2196.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/empty-085569ce-73ed-11df-83c3-002264764cea.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/full-and-fast-daba56c8-73ec-11df-a475-002264764cea.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/host-discovery-2d3f051c-55ba-11e3-bf43-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/policy-it-grundschutz-c4b7c0cb-6502-4809-b034-8e635311b3e6.xml
/var/lib/gvm/data-objects/gvmd/20.08/configs/system-discovery-bbca7412-a950-11e3-9109-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/port_lists/all-iana-assigned-tcp-33d0cd82-57c6-11e1-8ed1-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/port_lists/all-iana-assigned-tcp-and-udp-4a4717fe-57d2-11e1-9a26-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/port_lists/all-tcp-and-nmap-top-100-udp-730ef368-57e2-11e1-a90f-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/anonymous-xml-5057e5cc-b825-11e4-9d0e-28d24461215b.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/csv-results-c1645568-627a-11e3-a660-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/itg-77bd6c4a-1f62-11e1-abf0-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/pdf-c402cc3e-b531-11e1-9163-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/txt-a3810a62-1f62-11e1-9219-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/20.08/report_formats/xml-a994b278-1f62-11e1-96ac-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs
/var/lib/gvm/data-objects/gvmd/21.04/port_lists
/var/lib/gvm/data-objects/gvmd/21.04/report_formats
/var/lib/gvm/data-objects/gvmd/21.04/configs/base-d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/discovery-8715c877-47a0-438d-98a3-27c7a6ab2196.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/empty-085569ce-73ed-11df-83c3-002264764cea.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/full-and-fast-daba56c8-73ec-11df-a475-002264764cea.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/host-discovery-2d3f051c-55ba-11e3-bf43-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/policy-it-grundschutz-c4b7c0cb-6502-4809-b034-8e635311b3e6.xml
/var/lib/gvm/data-objects/gvmd/21.04/configs/system-discovery-bbca7412-a950-11e3-9109-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/port_lists/all-iana-assigned-tcp-33d0cd82-57c6-11e1-8ed1-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/port_lists/all-iana-assigned-tcp-and-udp-4a4717fe-57d2-11e1-9a26-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/port_lists/all-tcp-and-nmap-top-100-udp-730ef368-57e2-11e1-a90f-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/anonymous-xml-5057e5cc-b825-11e4-9d0e-28d24461215b.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/csv-results-c1645568-627a-11e3-a660-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/itg-77bd6c4a-1f62-11e1-abf0-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/pdf-c402cc3e-b531-11e1-9163-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/txt-a3810a62-1f62-11e1-9219-406186ea4fc5.xml
/var/lib/gvm/data-objects/gvmd/21.04/report_formats/xml-a994b278-1f62-11e1-96ac-406186ea4fc5.xml

Hello,

I noticed that feed updates are handled via the cron job /etc/cron.daily/gvm

Would it be feasible to switch from cron to systemd timers?

I find systemd timers much easier to manage. Nowadays, most services don't use cron anymore.

Hello,

So I installed GVM. The last thing I did was running gvm-setup during which I set the admin password.

Now I wanted to change the admin password via the console. I ran as root gvmd --user=admin --new-password=NEWPASSWORD.

However, the password did not change. Looking at /var/log/gvm/gvmd.log I see the following error message:

md   main:MESSAGE:2020-10-26 10h20.40 utc:30042:    Greenbone Vulnerability Manager version 20.08.0 (DB revision 233)
md manage:   INFO:2020-10-26 10h20.40 utc:30042:    Modifying user password.
md manage:WARNING:2020-10-26 10h20.40 utc:30042: sql_open: PQconnectPoll failed
md manage:WARNING:2020-10-26 10h20.40 utc:30042: sql_open: PQerrorMessage (conn): FATAL:  role "root" does not exist
md manage:WARNING:2020-10-26 10h20.40 utc:30042: init_manage_process: sql_open failed

When running an update of packages on my CentOS 7 install, the openvas to gvm package replacements cause my install to no longer work.

A tail of /var/log/gvm/gsad.log shows the following:
gsad main:MESSAGE:2019-04-19 14h05.36 utc:9587: Starting GSAD version 8.0.0 gsad main:CRITICAL:2019-04-19 14h05.36 utc:9588: main: Could not load private SSL key from /var/lib/gvm/private/CA/serverkey.pem: Failed to open file “/var/lib/gvm/private/CA/serverkey.pem”: No such file or directory

Checking /var/lib/gvm, I have a single directory called "mgr", which is empty.

gvm-setup has:

echo "Updating CERT data..."

for the greenbone-feed-sync --type SCAP sync and

echo "Updating SCAP data..."

for the greenbone-feed-sync --type CERT sync which should be exchanged.

Just leaving a note -- not a bug, not an issue.

I have spent a lot of time over the last few months attempting to get OpenVAS / GVM installed on various Linux distributions. Ubuntu, CentOS, Fedora, Kali Linux, etc. All of which have proven to be unstable -- either the system doesn't compile, doesn't install, doesn't run, or runs after a fashion for a while but then fails to keep running after various updates (e.g. switching the vulnerability feed to a new URL some time after the OpenVAS v9 release). In most of these cases the GVM support channels have been less than helpful.

I even abandoned GVM at one point and started looking at alternative packages but I couldn't find anything that actually did what I wanted it to do -- internal and external penetration testing on a range of hosts.

This is the first set of packages and installation instructions that I have encountered that actually install and run reliably and enable me to load up the vulnerability database and get GVM running, with all of its dependencies.

Well done and thank you.

Overview: The current version of gvm-libs in the repo is now end-of-life. So gvm-libs needs to be updated to at least 10.0.1, and possibly 10.0.2.

Reason: Running scans now reports a high vulnerability for every host that states:

• report outdated / end-of-life Scan Engine / Environment (local)

Specifically it states that:
Installed GVM Libraries (gvm-libs) version: 10.0.0
Latest available GVM Libraries (gvm-libs) version: 10.0.1

After applying updates yesterday to our CentOS7 servers, the gvmd service is failing to start. I am the second to report this issue in the Greenbone community and referred here. I did not examine all closed issues, but did search and look at a couple that appeared related and didn't see the solution.

Here is the error I am seeing in the /var/log/gvm/gvmd.log:

md main:MESSAGE:2020-11-07 15h48.32 utc:23975: Greenbone Vulnerability Manager version 9.0.0 (DB revision 221)
md manage:WARNING:2020-11-07 15h48.32 utc:23975: sql_exec_internal: PQexec failed: ERROR: could not load library "/usr/lib64/libgvm-pg-server.so": /lib64/libgvm_util.so.11: undefined symbol: gnutls_x509_privkey_import
(7)
md manage:WARNING:2020-11-07 15h48.32 utc:23975: sql_exec_internal: SQL: CREATE OR REPLACE FUNCTION hosts_contains (text, text) RETURNS boolean AS '/usr/lib64/libgvm-pg-server', 'sql_hosts_contains' LANGUAGE C IMMUTABLE;
md manage:WARNING:2020-11-07 15h48.32 utc:23975: sqlv: sql_exec_internal failed

I ran openvas-setup without an issue and website comes up with "GMP Service is down" error when trying to login. I ran yum update again and received the following:

[root@www gvm]# yum update
Loaded plugins: fastestmirror, langpacks, product-id, search-disabled-repos, subscription-manager

This system is not registered with an entitlement server. You can use subscription-manager to register.

Loading mirror speeds from cached hostfile

• atomic: www7.atomicorp.com
• base: mirror.atlanticmetro.net
• centos-sclo-rh: mirror.centos.iad1.serverforge.org
• elrepo: elrepo.0m3n.net
• epel: mirror.siena.edu
• extras: centos.mirrors.tds.net
• remi-php72: mirror.pit.teraswitch.com
• remi-php73: mirror.pit.teraswitch.com
• remi-php74: mirror.pit.teraswitch.com
• remi-safe: mirror.pit.teraswitch.com
• updates: mirror.centos.iad1.serverforge.org
  Resolving Dependencies
  --> Running transaction check
  ---> Package openvas-scanner.x86_64 0:6.0.0-6930.el7.art will be updated
  ---> Package openvas-scanner.x86_64 0:7.0.0-9465.el7.art will be an update
  --> Finished Dependency Resolution

Dependencies Resolved

================================================================================================================================================================
Package Arch Version Repository Size

Updating:
openvas-scanner x86_64 7.0.0-9465.el7.art atomic 247 k

Transaction Summary

Upgrade 1 Package

Total download size: 247 k
Is this ok [y/d/N]: y
Downloading packages:
No Presto metadata available for atomic
openvas-scanner-7.0.0-9465.el7.art.x86_64.rpm | 247 kB 00:00:00
Running transaction check
Running transaction test
Transaction test succeeded
Running transaction
Updating : openvas-scanner-7.0.0-9465.el7.art.x86_64 1/2
Cleanup : openvas-scanner-6.0.0-6930.el7.art.x86_64 2/2
warning: file /var/lib/openvas/plugins/nvt: remove failed: No such file or directory
warning: file /var/lib/openvas/plugins/gsf: remove failed: No such file or directory
Verifying : openvas-scanner-7.0.0-9465.el7.art.x86_64 1/2
Verifying : openvas-scanner-6.0.0-6930.el7.art.x86_64 2/2

Updated:
openvas-scanner.x86_64 0:7.0.0-9465.el7.art

Complete!

If I try to run openvas-setup again, I get the following:

[root@www gvm]# openvas-setup

Openvas Setup, Version: 4.0.1

Redirecting to /bin/systemctl restart redis.service
db_address=/var/run/redis/redis.sock

Step 1: Update NVT, CERT, and SCAP data
Please note this step could take some time.
Once completed, this will be updated automatically every 24 hours

Select download method

• wget (NVT download only)
• curl (NVT download only)
• rsync

Note: If rsync requires a proxy, you should define that before this step.

Downloader [Default: rsync]

Updating NVTs....
-bash: /usr/sbin/greenbone-nvt-sync: No such file or directory
Retrying in 3 seconds...
-bash: /usr/sbin/greenbone-nvt-sync: No such file or directory
Retrying in 3 seconds...

Thanks for any help and this great project!

I am getting frequent messages in the web interface:
An error occurred during making the request. Most likely the web server does not respond.

With an occasional:
The NVT you were looking for could not be found.
You might have followed an incorrect link and the NVT does not exist.

The page loads, but seems slower than normal.
What are my options for troubleshooting?

Using:

# gsad --version
Greenbone Security Assistant Version 21.4.2
# gvmd --version
Greenbone Vulnerability Manager 21.4.3

Installed Packages
Name         : gvm
Version      : 21.4.0
Release      : 18459.el8.art
Architecture : noarch
Size         : 87 k
Source       : gvm-21.4.0-18459.el8.art.src.rpm
Repository   : @System
From repo    : atomic
Summary      : The Greenbone Vulnerability Management (GVM) suite
URL          : http://www.openvas.org
License      : AGPL
Description  : Greenbone Vulnerability Management (GVM) is a meta-package encompassing all of the components from GVM including OpenVAS.

Hey,
like the project, could you guys please add the version number of this OpenVAS installation?
Its it 8.X or 9.X or something else?

Mainly copied from https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968500 with some slight modifications:

In gvm.cron [1] the CERT feed (via greenbone-certdata-sync) is synced before the SCAP feed (via greenbone-scapdata-sync).

Currently the CERT feed sync depends on data provided by the SCAP feed and should be called after syncing the latter. This is now also documented since a few days in [2].

[1] https://github.com/Atomicorp/openvas/blob/master/src/gvm-20.8.0/gvm.cron#L6-L7
[2] https://github.com/greenbone/gvmd/pull/1237/files

Hey, I would like to ask when we will have Version 7.0.3.. It fixes various performance issues and I would be happy if we could update soon.

Hi,

First of all - great job. Your repo saves a lot of time.
Do you have plans to release new rpms for the new version ?
https://community.greenbone.net/t/greenbone-os-5-0-3-4-3-14-and-4-2-29-released/2746

lsb_release -a
LSB Version: :core-4.1-amd64:core-4.1-noarch
Distributor ID: CentOS
Description: CentOS Linux release 7.6.1810 (Core)
Release: 7.6.1810
Codename: Core

systemctl status openvas-scanner.service
● openvas-scanner.service - OpenVAS Scanner
Loaded: loaded (/usr/lib/systemd/system/openvas-scanner.service; enabled; vendor preset: disabled)
Active: failed (Result: start-limit) since Sat 2019-07-13 21:21:28 CST; 6min ago
Process: 17848 ExecStart=/usr/sbin/openvassd $SCANNER_SOCKET $SCANNER_MODE $SCANNER_GROUP $SCANNER_OWNER (code=exited, status=0/SUCCESS)
Main PID: 17849 (code=exited, status=1/FAILURE)

Jul 13 21:21:27 localhost.localdomain systemd[1]: Unit openvas-scanner.service entered failed state.
Jul 13 21:21:27 localhost.localdomain systemd[1]: openvas-scanner.service failed.
Jul 13 21:21:28 localhost.localdomain systemd[1]: openvas-scanner.service holdoff time over, scheduling restart.
Jul 13 21:21:28 localhost.localdomain systemd[1]: Stopped OpenVAS Scanner.
Jul 13 21:21:28 localhost.localdomain systemd[1]: start request repeated too quickly for openvas-scanner.service
Jul 13 21:21:28 localhost.localdomain systemd[1]: Failed to start OpenVAS Scanner.
Jul 13 21:21:28 localhost.localdomain systemd[1]: Unit openvas-scanner.service entered failed state.
Jul 13 21:21:28 localhost.localdomain systemd[1]: openvas-scanner.service failed.

Hi,

Is anyone having this problem:

Browser console shows this:

GET https://10.20.1.150/gmp?token=ecf6ac5e-ec98-430a-b4c2-a59d0751b264&cmd=get_vulns&filter=sort%3Dname%20first%3D1%20rows%3D15 500 (Internal Server Error)

If you try to visit the url manually:

I couldn't find any clues in the system logs.

Any proposals ?

Kind regards,
PY

Can someone provide the options that can be utilized in the /etc/sysconfig/gsad file in the proper format?

Would like to eliminate TLS and Cipher Options.

These are the commands I am currently using to start the application.

gsad --http-sts --listen=X.X.X>X -p 9392 --gnutls-priorities="NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2:-CIPHER-ALL:+AES-256-CBC" &
gvmd &
openvassd &

What are the commands to stop the application and restart?

How do I kill a task that is not letting me edit scan configs?

Also do I still need gsad?

Confused after upgrading and trying to find one place that has everything documented.

I was just wondering if there are plans to back-port the following fixes, or if the solution is just to push forward to the 21.x release?

greenbone/gvmd#1517
greenbone/gsa#2905

These issues currently block me from actually using most of the local vulnerability detection options, because it blocks selecting them in the scan config.

Hi,

Thanks for providing GVM packages for CentOS/RHEL. It's very easy to deploy and convenient to maintain.

I've got an issue with config import after a fresh installation. Apparently, it was fixed in 20.8.1. Is it possible to upgrade the packages?

https://community.greenbone.net/t/skipping-nvt-1-3-6-1-4-1-25623-1-0-150081/8280
greenbone/gvmd#1366

Thank you

Error: Package: wapiti-2.3.0-5.el7.art.noarch (@atomic) Requires: python-SocksiPy Removing: python2-pysocks-1.6.7-1.el7.noarch (@epel) python-SocksiPy Updated By: python2-pysocks-1.6.8-6.el7.noarch (epel) Not found

I'm now receiving this error when trying to run a yum update && yum upgrade on our CentOS7 openvas box. Could it be possibly related to this same issue that was closed this morning? I saw that the dependency was removed from the repo as the solution. Any ideas? Or is this unrelated to the repo?

I just had the issue that I could not log into the GVM web gui. Having a look at the VM, I noticed that the hard disk was full. Specifically, the /tmp directory took more than 50 GB of space with directories like the following:

[root@gvm01 ~]# du -sh /tmp/*
496M    /tmp/gvmd-split-xml-file-0GvOMd
496M    /tmp/gvmd-split-xml-file-0YhUv5
496M    /tmp/gvmd-split-xml-file-118l3u
496M    /tmp/gvmd-split-xml-file-19Hp0A
496M    /tmp/gvmd-split-xml-file-1Uve1k
496M    /tmp/gvmd-split-xml-file-24tRVP
496M    /tmp/gvmd-split-xml-file-2jVS1g
496M    /tmp/gvmd-split-xml-file-2kkKjH
496M    /tmp/gvmd-split-xml-file-2KS2W6
496M    /tmp/gvmd-split-xml-file-2P8Fij
496M    /tmp/gvmd-split-xml-file-2quNF0
[...]

I cleared the /tmp directory and rebooted the VM and then GVM was working again. A quick Google search revealed that I am not the only person with this issue. I will post an update if I can find out anything useful.

When trying to run a task after the latest update, getting Error: Service Temporarily Down.

What could be causing this error?

Hello,
I have a fresh install of GVM/OpenVAS on CentOS 8.
The installation went smoothly following your guide but when I run a scan it only takes a few seconds and I get an empty result and a severity "N/A".
I just checked the logs but I don't see anything to justify this behavior.

Could you help me on this ?

Many thanks

Alerts not working via SMB and SCP :( I'm using Centos 8. Socat and sshpass is installed. Please help

Hi,

I tried to create a openvas 20.8 docker image based on CentOS8 using your repositories.

However I managed to start all services, and perform additional configuration as described in https://github.com/greenbone/gvmd/blob/v20.8.0/INSTALL.md

Now, if gvmd process is getting started I face the following strange issue:
... event port_list:MESSAGE:2020-10-20 04h06.37 utc:406: Port list All IANA assigned TCP and UDP (4a4717fe-57d2-11e1-9a26-406186ea4fc5) has been created by admin event port_list:MESSAGE:2020-10-20 04h06.37 utc:406: Port list All TCP and Nmap top 100 UDP (730ef368-57e2-11e1-a90f-406186ea4fc5) has been created by admin event port_list:MESSAGE:2020-10-20 04h06.37 utc:406: Port list All IANA assigned TCP (33d0cd82-57c6-11e1-8ed1-406186ea4fc5) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format PDF (c402cc3e-b531-11e1-9163-406186ea4fc5) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format CSV Results (c1645568-627a-11e3-a660-406186ea4fc5) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format ITG (77bd6c4a-1f62-11e1-abf0-406186ea4fc5) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format Anonymous XML (5057e5cc-b825-11e4-9d0e-28d24461215b) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format XML (a994b278-1f62-11e1-96ac-406186ea4fc5) has been created by admin event report_format:MESSAGE:2020-10-20 04h06.37 utc:406: Report format TXT (a3810a62-1f62-11e1-9219-406186ea4fc5) has been created by admin util gpgme:MESSAGE:2020-10-20 04h06.38 utc:406: Setting GnuPG dir to '/var/lib/gvm/gvmd/gnupg' util gpgme:MESSAGE:2020-10-20 04h06.38 utc:406: Created GnuPG dir '/var/lib/gvm/gvmd/gnupg' util gpgme:MESSAGE:2020-10-20 04h06.38 utc:406: Using OpenPGP engine version '2.2.9' util gpgme: INFO:2020-10-20 04h06.38 utc:406: starting key generation ... util gpgme: INFO:2020-10-20 04h06.38 utc:406: OpenPGP key 'GVM Credential Encryption' has been generated ...

Some configuration sections seem to get imported from: /var/lib/gvm/data-objects/gvmd/20.08/ but not all
If I later navigate throug configuration web menu I can not configure new scan configurations:

• Basic configuration (minimal NVTs): Failed to find config 'd21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663'
• Empty static configuration: Failed to find config '085569ce-73ed-11df-83c3-002264764cea'
• Full and fast: Failed to find config 'daba56c8-73ec-11df-a475-002264764cea'

Looking in the filesystem:
ls -la /var/lib/gvm/data-objects/gvmd/20.08/configs/ total 1292 drwxr-xr-x 2 gvm gvm 4096 Oct 16 08:55 . drwxr-xr-x 5 gvm gvm 4096 Jun 17 13:41 .. -rw-r--r-- 1 gvm gvm 826 Aug 31 07:29 base-d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663.xml -rw-r--r-- 1 gvm gvm 47873 Aug 31 07:29 discovery-8715c877-47a0-438d-98a3-27c7a6ab2196.xml -rw-r--r-- 1 gvm gvm 884 Aug 31 07:29 empty-085569ce-73ed-11df-83c3-002264764cea.xml -rw-r--r-- 1 gvm gvm 1790 Aug 31 07:29 full-and-fast-daba56c8-73ec-11df-a475-002264764cea.xml -rw-r--r-- 1 gvm gvm 1764 Aug 31 07:29 host-discovery-2d3f051c-55ba-11e3-bf43-406186ea4fc5.xml -rw-r--r-- 1 gvm gvm 10630 Oct 15 11:31 policy-huawei-datacom-aab5c4a1-eab1-4f4e-acac-8c36d08de6bc.xml -rw-r--r-- 1 gvm gvm 14966 Aug 31 07:29 policy-it-grundschutz-c4b7c0cb-6502-4809-b034-8e635311b3e6.xml -rw-r--r-- 1 gvm gvm 612735 Sep 28 09:19 policy_euleros_20200909_9f822ad3-9208-4e02-ac03-78dce3ca9a23.xml -rw-r--r-- 1 gvm gvm 597265 Sep 28 09:19 policy_gaussdb_20200909_61327f09-8a54-4854-9e1c-16798285fb28.xml -rw-r--r-- 1 gvm gvm 5220 Aug 31 07:29 system-discovery-bbca7412-a950-11e3-9109-406186ea4fc5.xml

Do you have any ideas how to solve this issue?

Hi all, I am attempting to install to CentOS 7 (7.5.1804)

after adding the repo to my host using:
wget -q -O - https://updates.atomicorp.com/installers/atomic | sh

I try to install openvas:
yum install openvas

I receive a message that this has been replaced by Package greenbone-vulnerability-manager

openvas is obsoleted by greenbone-vulnerability-manager, trying to install greenbone-vulnerability-manager-10.0.0-6871.el7.art.noarch instead

So yum switches to greenbone instead, builds its list of dependencies, I answer yes for install but receive a transaction error.

Transaction check error:
  file /usr/bin/openvas-nasl conflicts between attempted installs of openvas-scanner-6.0.0-6872.el7.art.x86_64 and openvas-libraries-9.0.3-6672.el7.art.x86_64
  file /usr/bin/openvas-nasl-lint conflicts between attempted installs of openvas-scanner-6.0.0-6872.el7.art.x86_64 and openvas-libraries-9.0.3-6672.el7.art.x86_64
  file /usr/lib64/libopenvas_misc.so conflicts between attempted installs of openvas-scanner-6.0.0-6872.el7.art.x86_64 and openvas-libraries-9.0.3-6672.el7.art.x86_64
  file /usr/lib64/libopenvas_nasl.so conflicts between attempted installs of openvas-scanner-6.0.0-6872.el7.art.x86_64 and openvas-libraries-9.0.3-6672.el7.art.x86_64
  file /usr/share/man/man1/openvas-nasl.1.gz conflicts between attempted installs of openvas-scanner-6.0.0-6872.el7.art.x86_64 and openvas-libraries-9.0.3-6672.el7.art.x86_64

I am halted here as the install does not happen. Assistence would be much appreciated. I also noticed green bone says version 10 which I thought was beta? Is it possible to just request version 9?

Edit:
When performing a yum with a show duplicates option:
yum --showduplicates list greenbone-vulnerability-manager

gives two versions but all are version 10:
greenbone-vulnerability-manager.noarch 10.0.0-6865.el7.art atomic
greenbone-vulnerability-manager.noarch 10.0.0-6871.el7.art atomic

Edit 2:
The oldest available OpenVAS package is:
OpenVAS version 9.0.0-2795

We are seeing the same conflicts when trying to install that instead as it will automatically jump to install the greenbone-vulnerability-manager since OpenVAS is "obsolete".

There is a new important patch for the ospd-openvas package greenbone/ospd-openvas#334
It's possible to provide the rpm to atomic repo?

Thanks in advance.
mik

Migrated from greenbone/gvm-libs#197 (comment):

greenbone-vulnerability-manager (formerly openvas, our loader package for the whole suite)

This could introduce some confusion for the following reason (because of the naming decision to go for GVM and GVMd which are differently):

GVM = Greenbone Vulnerability Management (The projects "main" name, including e.g. openvas-scanner, gvmd, gvm-libs, ...)
GVMd = Greenbone Vulnerability Manager daemon (The formerly openvas-manager, located now at https://github.com/greenbone/gvmd)

Is there a new yum install for GVM 20?

new install of greenbone vulnerability manager on centos 7 using atomic repo. able to authenticate via smb credentials using an admin account, however in Windows SMB/LSC Authenticated Scan Info consolidation we see the following 3 lines:

Access to the registry possible (SMB/registry_access) : FALSE
Extended SMB support available via openvas-smb module (Tools/Present/smb) : FALSE
Extended WMI support available via openvas-smb module (Tools/Present/wmi) : FALSE

This is regardless of whether or not we enable ‘Start Remote Registry Service’ - cloned Full and very deep, and full and very deep ultimate and changed the value to yes. If the remote registry service does not start we receive no vulnerability information. We can however manually start the service on the target machine and get results. Is there a step during install to enable the openvas-smb tool or a scan setting? Please help. Issue began after update of OpenVas/GVM. libgcrypt error was reason for new install.

Additionally, we disabled the firewall on host and greenbone machine as well as disabling selinux. which yields similar results.

Since the future of Centos 8 is limited now, any updates on when CentOS stream will be supported?

At the moment it wants to uninstall GVM when doing a CentOS 8 to CentOS stream upgrade.

Hi,

Do you have any solutions problems below?

OS : CentOS7
GVM: GVM9.0

My gsad and OpenVAS Scanner services down.

● gvmd.service - OpenVAS Manager
   Loaded: loaded (/usr/lib/systemd/system/gvmd.service; enabled; vendor preset: disabled)
   Active: failed (Result: start-limit) since Sun 2021-01-24 14:22:40 CET; 19h ago
  Process: 11629 ExecStart=/usr/sbin/gvmd -f $OPTIONS (code=exited, status=1/FAILURE)

Jan 24 14:22:38 localhost.localdomain systemd[1]: gvmd.service: control process exited, code=exited status=1
Jan 24 14:22:38 localhost.localdomain systemd[1]: Failed to start OpenVAS Manager.
Jan 24 14:22:38 localhost.localdomain systemd[1]: Unit gvmd.service entered failed state.
Jan 24 14:22:38 localhost.localdomain systemd[1]: gvmd.service failed.
Jan 24 14:22:40 localhost.localdomain systemd[1]: gvmd.service holdoff time over, scheduling restart.
Jan 24 14:22:40 localhost.localdomain systemd[1]: Stopped OpenVAS Manager.
Jan 24 14:22:40 localhost.localdomain systemd[1]: start request repeated too quickly for gvmd.service
Jan 24 14:22:40 localhost.localdomain systemd[1]: Failed to start OpenVAS Manager.
Jan 24 14:22:40 localhost.localdomain systemd[1]: Unit gvmd.service entered failed state.
Jan 24 14:22:40 localhost.localdomain systemd[1]: gvmd.service failed.

● openvas-scanner.service - OpenVAS Scanner
   Loaded: loaded (/usr/lib/systemd/system/openvas-scanner.service; enabled; vendor preset: disabled)
   Active: failed (Result: start-limit) since Sun 2021-01-24 14:22:40 CET; 19h ago
  Process: 11627 ExecStart=/usr/sbin/openvassd $SCANNER_SOCKET $SCANNER_MODE $SCANNER_GROUP $SCANNER_OWNER (code=exited, status=203/EXEC)

Jan 24 14:22:38 localhost.localdomain systemd[1]: openvas-scanner.service: control process exited, code=exited status=203
Jan 24 14:22:38 localhost.localdomain systemd[1]: Failed to start OpenVAS Scanner.
Jan 24 14:22:38 localhost.localdomain systemd[1]: Unit openvas-scanner.service entered failed state.
Jan 24 14:22:38 localhost.localdomain systemd[1]: openvas-scanner.service failed.
Jan 24 14:22:40 localhost.localdomain systemd[1]: openvas-scanner.service holdoff time over, scheduling restart.
Jan 24 14:22:40 localhost.localdomain systemd[1]: Stopped OpenVAS Scanner.
Jan 24 14:22:40 localhost.localdomain systemd[1]: start request repeated too quickly for openvas-scanner.service
Jan 24 14:22:40 localhost.localdomain systemd[1]: Failed to start OpenVAS Scanner.
Jan 24 14:22:40 localhost.localdomain systemd[1]: Unit openvas-scanner.service entered failed state.
Jan 24 14:22:40 localhost.localdomain systemd[1]: openvas-scanner.service failed.

Moreover my gsad.log contains these logs:

md manage:WARNING:2021-01-24 13h21.45 utc:11522: sql_exec_internal: SQL: CREATE OR REPLACE FUNCTION hosts_contains (text, text) RETURNS boolean AS '/usr/lib64/libgvm-pg-server', 'sql_hosts_contains' LANGUAGE C IMMUTABLE;
md manage:WARNING:2021-01-24 13h21.45 utc:11522: sqlv: sql_exec_internal failed
md   main:MESSAGE:2021-01-24 13h21.46 utc:11526:    Greenbone Vulnerability Manager version 9.0.0 (DB revision 221)
md manage:WARNING:2021-01-24 13h21.46 utc:11526: sql_exec_internal: PQexec failed: ERROR:  could not load library "/usr/lib64/libgvm-pg-server.so": /opt/atomicorp/atomic/root/usr/lib64/libgpgme.so.11: symbol gpgrt_lock_lock, version GPG_ERROR_1.0 not defined in file libgpg-error.so.0 with link time reference

and when I want to login on the GUI as admin, it present the "GVM service down" string.

Do you have any solution for that problem?

the service appears to be running, but has the pid file in a different location.
I found this when running: systemctl status gvmd.service
the output includes:
Sep 14 16:35:21 systemname systemd[1]: Starting GVM Manager...
Sep 14 16:35:21 systemname systemd[1]: gvmd.service: Can't open PID file /var/run/gvm/gvmd.pid (yet?) after start: No such file or directory
Sep 14 16:35:25 systemname systemd[1]: Started GVM Manager

in files:
/etc/systemd/system/multi-user.target.wants/gvmd.service:PIDFile=/var/run/gvm/gvmd.pid
/etc/systemd/system/openvas-manager.service:PIDFile=/var/run/gvm/gvmd.pid

I did find the location of the pid file:
$ find / -name gvmd.pid
/run/gvm/gvmd.pid

Step 4: Checking Greenbone Security Assistant (GSA) ...
OK: Greenbone Security Assistant is present in version 7.0.2.
ERROR: Your OpenVAS certificate infrastructure did NOT pass validation.
FIX: Run 'openvas-manage-certs -a'.

ERROR: Your OpenVAS-9 installation is not yet complete!

Hi
i am trying to reinstall openvas using latest rpms, but there is something wrong with python scripts.

When starting ospd-openvas i get the following error

ospd-openvas[30688]: Traceback (most recent call last): Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/opt/atomicorp/bin/ospd-openvas", line 6, in <module> Sep 7 16:11:39 localhost ospd-openvas[30688]: from pkg_resources import load_entry_point Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 3095, in <module> Sep 7 16:11:39 localhost ospd-openvas[30688]: @_call_aside Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 3079, in _call_aside Sep 7 16:11:39 localhost ospd-openvas[30688]: f(*args, **kwargs) Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 3108, in _initialize_master_working_set Sep 7 16:11:39 localhost ospd-openvas[30688]: working_set = WorkingSet._build_master() Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 570, in _build_master Sep 7 16:11:39 localhost ospd-openvas[30688]: ws.require(__requires__) Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 888, in require Sep 7 16:11:39 localhost ospd-openvas[30688]: needed = self.resolve(parse_requirements(requirements)) Sep 7 16:11:39 localhost ospd-openvas[30688]: File "/usr/lib/python3.6/site-packages/pkg_resources/__init__.py", line 774, in resolve Sep 7 16:11:39 localhost ospd-openvas[30688]: raise DistributionNotFound(req, requirers) Sep 7 16:11:39 localhost ospd-openvas[30688]: pkg_resources.DistributionNotFound: The 'ospd-openvas==20.8.0' distribution was not found and is required by the application Sep 7 16:11:39 localhost systemd[1]: ospd-openvas.service: Main process exited, code=exited, status=1/FAILURE

Don't know if it is related but directory /opt/atomicorp/lib/python3.6/site-packages is empty, all the packages are in /opt/atomicorp/lib/python3.8/site-packages, maybe wrong python version referenced in ospd-openvas.service?

So, I finally got the latest version running. Like others reported here, all tasks were wiped.

I moved all of the files and renamed as necessary such as tasks.db.
I ran the database migration successfully (make sure to stop gvmd and redis to those stuck on this step).

However, the tasks still never appeared.

Fine.... Ill recreate them.

Well, I've tried doing an immediate scan of 10.0.2.1-10.0.2.255.....Stuck at 1% for days.

Ive tried creating a Target List both manually and by uploading a file with all IPs then creating a Host Discovery task using the new Target List.... Stuck at 1% for days

I tried creating a Target List with say 5 IPs then just simply Running a Scan using the target list.... .This works. So I can get it to work for say 5 IPs, but I cant get it to work for the whole block.

Any ideas on why? Is there a host limitation set somewhere? Is there a specific log you'd like me to post?

Thanks!

Just wanted to put a post in here for updating the atomic repo to the 21.04 release:

https://community.greenbone.net/t/gvm-21-04-stable-initial-release-2021-04-16/8942/3

Apologies if this is the wrong place to report this but.....

When attempting to install openvas-scanner-7.0.0-9465.el7.art.x86_64.rpm on a CentOS 7 server the following error is given:

[root@scan x]# rpm -i openvas-scanner-7.0.0-9465.el7.art.x86_64.rpm
Usage: useradd [options] LOGIN
       useradd -D
       useradd -D [options]

Options:
  -b, --base-dir BASE_DIR       base directory for the home directory of the
                                new account
  -c, --comment COMMENT         GECOS field of the new account
  -d, --home-dir HOME_DIR       home directory of the new account
  -D, --defaults                print or change default useradd configuration
  -e, --expiredate EXPIRE_DATE  expiration date of the new account
  -f, --inactive INACTIVE       password inactivity period of the new account
  -g, --gid GROUP               name or ID of the primary group of the new
                                account
  -G, --groups GROUPS           list of supplementary groups of the new
                                account
  -h, --help                    display this help message and exit
  -k, --skel SKEL_DIR           use this alternative skeleton directory
  -K, --key KEY=VALUE           override /etc/login.defs defaults
  -l, --no-log-init             do not add the user to the lastlog and
                                faillog databases
  -m, --create-home             create the user's home directory
  -M, --no-create-home          do not create the user's home directory
  -N, --no-user-group           do not create a group with the same name as
                                the user
  -o, --non-unique              allow to create users with duplicate
                                (non-unique) UID
  -p, --password PASSWORD       encrypted password of the new account
  -r, --system                  create a system account
  -R, --root CHROOT_DIR         directory to chroot into
  -P, --prefix PREFIX_DIR       prefix directory where are located the /etc/* files
  -s, --shell SHELL             login shell of the new account
  -u, --uid UID                 user ID of the new account
  -U, --user-group              create a group with the same name as the user
  -Z, --selinux-user SEUSER     use a specific SEUSER for the SELinux user mapping

error: %pre(openvas-scanner-7.0.0-9465.el7.art.x86_64) scriptlet failed, exit status 2
error: openvas-scanner-7.0.0-9465.el7.art.x86_64: install failed

Looking at the scripts with rpm -qp --scripts openvas-scanner-7.0.0-9465.el7.art.x86_64.rpm the following snippet shows the useradd command:

if ! id -g openvas > /dev/null 2>&1; then
	useradd g openvas -G openvas       \
        -d /var/openvas \
        -r -s /sbin/nologin openvas
fi

I'm presuming the line useradd g openvas -G openvas should be useradd -g openvas -G openvas e.g. dash before the lower g??

Using rpmrebuild and making the above change allows for the package to install without error

When will the latest version be available?

Installed GVM Libraries (gvm-libs) version: 10.0.0
Latest available GVM Libraries (gvm-libs) version: 10.0.1

As title,
I installed gvm using yum, and found that doesn't support for RADIUS.
Is that anything wrong? or it doesn't build including RADIUS?

GVM-20 install seemed to have finished successfully. But one thing does not work,

https://<ip-of-gvm>/vulnerabilties throws:

In the logs I can find:

md manage:WARNING:2020-09-25 08h38.26 UTC:554058: sql_exec_internal: SQL: SELECT id AS id, uuid AS uuid, name AS name, '' AS comment, iso_time (creation_time), iso_time (modification_time), creation_time AS created, modification_time AS modified, cast (null AS text) AS _owner, '' AS owner, vuln_results (uuid, opts.task, opts.report, opts.host) AS results, (SELECT count(*) FROM  (SELECT results.host FROM results  WHERE nvt = vulns.uuid    AND (opts.report IS NULL OR results.report = opts.report)    AND (opts.task IS NULL OR results.task = opts.task)    AND (opts.host IS NULL OR results.host = opts.host)    AND (results.severity != -3.0)    AND (SELECT has_permission FROM permissions_get_tasks         WHERE "user"                = (SELECT id FROM users                   WHERE uuid                         = (SELECT current_setting                                    ('gvmd.user.uuid')))           AND task = results.task)      GROUP BY results.host) AS hosts_subquery) AS hosts, severity, qod, (SELECT iso_time (min (date)) FROM results  WHERE nvt = vulns.uuid    AND (opts.report IS NULL OR results.report = opts.report)    AND (opts.task IS NULL OR results.task = opts.task)    AND (opts.host IS NULL OR results.host = opts.host)    AND (results.severity != -3.0)    AND (SELECT has_permission FROM permissions_get_tasks         WHERE "user"                = (SELECT id FROM users                   WHERE uuid                         = (SELECT current_setting                                    ('gvmd.user.uuid')))           AND task = results.task)), (SELECT iso_time (max (date)) FROM results  WHERE nvt = vulns.uuid    AND (opts.report IS NULL OR results.report = opts.report)    AND (opts.task IS NULL OR results.task = opts.task)    AND (opts.host IS NULL OR results.host = opts.host)    AND (results.severity != -3.0)    AND (SELECT has_permission FROM permissions_get_tasks         WHERE "user"                = (SELECT id FROM users                   WHERE uuid                         = (SELECT current_setting                                    ('gvmd.user.uuid')))           AND task = results.task)), type, (SELECT min (date) FROM results  WHERE nvt = vulns.uuid    AND (opts.report IS NULL OR results.report = opts.report)    AND (opts.task IS NULL OR results.task = opts.task)    AND (opts.host IS NULL OR results.host = opts.host)    AND (results.severity != -3.0)    AND (SELECT has_permission FROM permissions_get_tasks         WHERE "user"                = (SELECT id FROM users                   WHERE uuid                         = (SELECT current_setting                                    ('gvmd.user.uuid')))           AND task = results.task)) AS oldest, (SELECT max (date) FROM results  WHERE nvt = vulns.uuid    AND (opts.report IS NULL OR results.report = opts.report)    AND (opts.task IS NULL OR results.task = opts.task)    AND (opts.host IS NULL OR results.host = opts.host)    AND (results.severity != -3.0)    AND (SELECT has_permission FROM permissions_get_tasks         WHERE "user"                = (SELECT id FROM users                   WHERE uuid                         = (SELECT current_setting                                    ('gvmd.user.uuid')))           AND task = results.task)) AS newest FROM vulns , (SELECT cast (null AS integer) AS task, cast (null AS integer) AS report, cast (null AS text) AS host, 70 AS min_qod) AS opts WHERE  t () AND (vuln_results (uuid, opts.task, opts.report,                    opts.host) > 0) AND (qod >= opts.min_qod) ORDER BY lower (name) ASC LIMIT 10 OFFSET 0;
md manage:WARNING:2020-09-25 08h38.26 UTC:554058: next: sql_exec_internal failed
md manage:WARNING:2020-09-25 08h38.28 UTC:554077: sql_exec_internal: PQexec failed: ERROR:  relation "vulns" does not exist
LINE 1: ...         AND task = results.task)) AS newest FROM vulns , (S...

Not sure what went wrong.. Everything else seem to work.