OpenVAS kasutamine
Allikas: Imre kasutab arvutit
Mine navigeerimisribaleMine otsikasti
Sissejuhatus
OpenVAS (Open Vulnerability Assessment System) http://www.openvas.org/ ...
Tööpõhimõte
TODO
Tarkvara paigaldamine
Congratulations. Your server certificate was properly created. The following files were created :
. Certification authority :
Certificate = /var/lib/openvas/CA/cacert.pem Private key = /var/lib/openvas/private/CA/cakey.pem
. OpenVAS Server :
Certificate = /var/lib/openvas/CA/servercert.pem Private key = /var/lib/openvas/private/CA/serverkey.pem
/etc/openvas/openvasd.conf updated to use the server's certificate / keys
Kasutajate haldamine
# openvas-adduser Using /var/tmp as a temporary file holder. Add a new openvasd user --------------------------------- Login : imre Authentication (pass/cert) [pass] : Login password : Login password (again) : User rules --------------- openvasd has a rules system which allows you to restrict the hosts that imre has the right to test. For instance, you may want him to be able to scan his own host only. Please see the openvas-adduser(8) man page for the rules syntax. Enter the rules for this user, and hit ctrl-D once you are done: (the user can have an empty rules set) default accept Login : imre Password : *********** Rules : default accept Is that ok? (y/n) [y] y user added.
Kasutamine
Kasutamiseks tuleb käivitada OpenVAS klient, nt töökohaarvutist ning
- näidata OpenVAS serveri asukoht
- kirjeldada Task ja Scope
- käivitada Scope, selline keskmine scan kestab ca 10 min
- lugeda raportit
20231020 täiendused
Vt https://greenbone.github.io/docs/latest/22.4/container/index.html
$ docker compose -f $DOWNLOAD_DIR/docker-compose.yml -p greenbone-community-edition pull $ docker compose -f $DOWNLOAD_DIR/docker-compose.yml -p greenbone-community-edition up -d $ docker compose -f $DOWNLOAD_DIR/docker-compose.yml -p greenbone-community-edition logs -f
Kasulikud lisamaterjalid
- TODO