OpenVAS 9 woes

So after all is said and done, it’s already been noted in the mailing list that openvas9 uses rsync for at least 2 update commands getting scapdata and certdata and so port 873 needs to be open through your proxy. Good luck getting a large corporate IT to punch a hole in their proxy to let that through.  From what I’ve been seeing, there’s no easy way to manually retrieve the updates either.  C’est La Vie.

Just for documentation sake, here’s what I did to set it up.

OS:

Installed Linux Mint Cinnamon 18.1.2

updated proxy settings

sudo xed /etc/apt/apt.conf.d/95proxies
   Acquire::http::proxy "http://yourproxy.server.com:8080/”;
   Acquire::https::proxy "http://yourproxy.server.com:8080/";
   Acquire::ftp::proxy "http://yourproxy.server.com:8080/";
   Acquire::rsync::proxy "http://yourproxy.server.com:8080/";

sudo xed /etc/environment
   http_proxy=http://yourproxy.server.com:8080/
   https_proxy=http://yourproxy.server.com:8080/
   ftp_proxy=http://yourproxy.server.com:8080/
   rsync_proxy=http://yourproxy.server.com:8080/
   no_proxy="localhost,127.0.0.1,"

update OS

sudo apt-get update -y
sudo apt-get upgrade -y
sudo reboot

OpenVAS:

Make sure your system is updated/patched before starting.

sudo add-apt-repository ppa:mrazavi/openvas   [add the repository]
sudo apt-get update
sudo apt-get install python-software-properties [dependency]
sudo apt-get install sqlite3
sudo apt-get install openvas9
sudo apt-get install texlive-latex-extra --no-install-recommends   [for pdf reports]
sudo apt-get install libopenvas9-dev    [the openvas-nasl util]
sudo greenbone-nvt-sync
sudo greenbone-scapdata-sync
sudo greenbone-certdata-sync
sudo openvasmd --migrate  [if upgrading from an older version]
sudo openvasmd --rebuild --progress
sudo systemctl start openvas-scanner  [start the 3 services]
sudo systemctl start openvas-manager
sudo systemctl start openvas-gsa
sudo ufw allow https    [open firewall -- may not be needed with v9]

sudo service openvas-scanner restart     [if you had started these two prior to the greenbone updates]
sudo service openvas-manager restart

If desired, change the admin password:

sudo openvasmd --user=admin --new-password=

open a browser and go to https://localhost:4000

default login is admin/admin

Ref: OpenVAS, Openvas-discuss, Openvas-discuss msg2Squid Configuration for Rsync Proxy,

Advertisements