Configure Repo for yum installation.
[root@ramank ~]# wget -q -O - http://www.atomicorp.com/installers/atomic | sh
Atomic Archive installer, version 2.0.6
BY INSTALLING THIS SOFTWARE AND BY USING ANY AND ALL SOFTWARE
PROVIDED BY ATOMICORP LIMITED YOU ACKNOWLEDGE AND AGREE:
THIS SOFTWARE AND ALL SOFTWARE PROVIDED IN THIS REPOSITORY IS
PROVIDED BY ATOMICORP LIMITED AS IS, IS UNSUPPORTED AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ATOMICORP LIMITED, THE
COPYRIGHT OWNER OR ANY CONTRIBUTOR TO ANY AND ALL SOFTWARE PROVIDED
BY OR PUBLISHED IN THIS REPOSITORY BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
OF THE POSSIBILITY OF SUCH DAMAGE.
Do you agree to these terms? (yes/no) [Default: yes] y
Invalid input
Do you agree to these terms? (yes/no) [Default: yes] yes
Configuring the [atomic] yum archive for this system
Installing the Atomic GPG key: OK
Downloading atomic-release-1.0-14.fc16.art.noarch.rpm: OK
The Atomic Rocket Turtle archive has now been installed and configured for your system
The following channels are available:
atomic - [ACTIVATED] - contains the stable tree of ART packages
atomic-testing - [DISABLED] - contains the testing tree of ART packages
atomic-bleeding - [DISABLED] - contains the development tree of ART packages
Installation
[root@ramank ~]# yum install openvas
Loaded plugins: langpacks, presto, refresh-packagekit
atomic | 1.9 kB 00:00
atomic/primary_db | 116 kB 00:01
Setting up Install Process
Resolving Dependencies
Total download size: 70 M
Installed size: 201 M
Is this ok [y/N]: y
Downloading Packages:
Installed:
openvas.noarch 0:1.0-3.fc16.art
Dependency Installed:
greenbone-security-assistant.i686 0:3.0.3-3.fc16.art kpathsea.i686 0:2007-66.fc16
libmicrohttpd.i686 0:0.9.22-1.fc16 mingw32-nsis.i686 0:2.46-3.fc16
ncrack.i686 0:0.4-0.1.ALPHA.fc16 netpbm-progs.i686 0:10.47.31-1.fc16
nikto.noarch 1:2.1.5-6.fc16.art openvas-administrator.i686 0:1.2.1-2.fc16.art
openvas-cli.i686 0:1.1.5-3.fc16.art openvas-libraries.i686 0:5.0.4-5.fc16.art
openvas-manager.i686 0:3.0.4-4.fc16.art openvas-scanner.i686 0:3.3.1-2.fc16.art
perl-libwhisker2.noarch 0:2.5-5.fc16.art pnscan.i686 0:1.11-1.fc16.art
python-SocksiPy.noarch 0:1.00-5.fc15 tex-preview.noarch 0:11.86-6.fc16
texlive.i686 0:2007-66.fc16 texlive-dvips.i686 0:2007-66.fc16
texlive-latex.i686 0:2007-66.fc16 texlive-texmf.noarch 0:2007-40.fc16
texlive-texmf-dvips.noarch 0:2007-40.fc16 texlive-texmf-fonts.noarch 0:2007-40.fc16
texlive-texmf-latex.noarch 0:2007-40.fc16 texlive-utils.i686 0:2007-66.fc16
wapiti.noarch 0:2.2.1-4.fc16.art wmi.i686 0:1.3.14-2.fc16.art
Completed.
How to run setup with details.
[root@ramank ~]# openvas-setup
Openvas Setup, Version: 0.3
Step 1: Update NVT's and SCAP data
Please note this step could take some time.
Once completed, NVT's and SCAP data will be updated automatically every 24 hours
Updating NVTs....
Restarting openvas-scanner (via systemctl): Job failed. See system logs and 'systemctl status' for details.
[FAILED]
Updating SCAP data...
[i] This script synchronizes a SCAP data directory with the OpenVAS one.
[i] SCAP dir: /var/lib/openvas/scap-data
[i] Will use rsync
[i] Using rsync: /usr/bin/rsync
[i] Configured SCAP data rsync feed: rsync://feed.openvas.org:/scap-data
OpenVAS feed server - http://openvas.org/
This service is hosted by Intevation GmbH - http://intevation.de/
All transactions are logged.
Please report problems to admin@intevation.de
receiving incremental file list
./
COPYING
1187 100% 1.13MB/s 0:00:00 (xfer#1, to-check=28/30)
COPYING.asc
198 100% 193.36kB/s 0:00:00 (xfer#2, to-check=27/30)
nvdcve-2.0-2002.xml
19507956 100% 112.33kB/s 0:02:49 (xfer#3, to-check=26/30)
nvdcve-2.0-2002.xml.asc
198 100% 0.37kB/s 0:00:00 (xfer#4, to-check=25/30)
nvdcve-2.0-2003.xml
5798371 100% 154.08kB/s 0:00:36 (xfer#5, to-check=24/30)
nvdcve-2.0-2003.xml.asc
198 100% 0.29kB/s 0:00:00 (xfer#6, to-check=23/30)
nvdcve-2.0-2004.xml
12331181 100% 214.26kB/s 0:00:56 (xfer#7, to-check=22/30)
nvdcve-2.0-2004.xml.asc
198 100% 0.46kB/s 0:00:00 (xfer#8, to-check=21/30)
nvdcve-2.0-2005.xml
19671905 100% 159.13kB/s 0:02:00 (xfer#9, to-check=20/30)
nvdcve-2.0-2005.xml.asc
198 100% 0.32kB/s 0:00:00 (xfer#10, to-check=19/30)
nvdcve-2.0-2006.xml
31312876 100% 181.65kB/s 0:02:48 (xfer#11, to-check=18/30)
nvdcve-2.0-2006.xml.asc
198 100% 0.35kB/s 0:00:00 (xfer#12, to-check=17/30)
nvdcve-2.0-2007.xml
29317902 100% 152.60kB/s 0:03:07 (xfer#13, to-check=16/30)
nvdcve-2.0-2007.xml.asc
198 100% 1.62kB/s 0:00:00 (xfer#14, to-check=15/30)
nvdcve-2.0-2008.xml
34128705 100% 158.15kB/s 0:03:30 (xfer#15, to-check=14/30)
nvdcve-2.0-2008.xml.asc
198 100% 0.26kB/s 0:00:00 (xfer#16, to-check=13/30)
nvdcve-2.0-2009.xml
33566018 100% 200.77kB/s 0:02:43 (xfer#17, to-check=12/30)
nvdcve-2.0-2009.xml.asc
198 100% 0.33kB/s 0:00:00 (xfer#18, to-check=11/30)
nvdcve-2.0-2010.xml
48866041 100% 203.87kB/s 0:03:54 (xfer#19, to-check=10/30)
nvdcve-2.0-2010.xml.asc
198 100% 0.22kB/s 0:00:00 (xfer#20, to-check=9/30)
nvdcve-2.0-2011.xml
113504024 100% 152.58kB/s 0:12:06 (xfer#21, to-check=8/30)
nvdcve-2.0-2011.xml.asc
198 100% 193.36kB/s 0:00:00 (xfer#22, to-check=7/30)
nvdcve-2.0-2012.xml
33311229 100% 142.27kB/s 0:03:48 (xfer#23, to-check=6/30)
nvdcve-2.0-2012.xml.asc
198 100% 0.99kB/s 0:00:00 (xfer#24, to-check=5/30)
official-cpe-dictionary_v2.2.xml
16156377 100% 146.36kB/s 0:01:47 (xfer#25, to-check=4/30)
official-cpe-dictionary_v2.2.xml.asc
198 100% 0.21kB/s 0:00:00 (xfer#26, to-check=3/30)
sha1sums
1774 100% 1.89kB/s 0:00:00 (xfer#27, to-check=2/30)
timestamp
13 100% 0.01kB/s 0:00:00 (xfer#28, to-check=1/30)
timestamp.asc
198 100% 0.21kB/s 0:00:00 (xfer#29, to-check=0/30)
sent 585 bytes received 397528878 bytes 164710.78 bytes/sec
total size is 397478331 speedup is 1.00
[i] (Re-)initializing database
[i] Updating CPEs
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2002.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2003.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2004.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2005.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2006.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2007.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2008.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2009.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2010.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2011.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2012.xml
Updating OpenVAS Manager database....
Step 2: Configure GSAD
The Greenbone Security Assistant is a Web Based front end
for managing scans. By default it is configured to only allow
connections from localhost.
Allow connections from any IP? [Default: yes]
Restarting gsad (via systemctl): [ OK ]
Step 3: Choose the GSAD admin users password.
The admin user is used to configure accounts,
Update NVT's manually, and manage roles.
Enter administrator username: admin
Enter Administrator Password:
Verify Administrator Password:
ad main:MESSAGE:28965:2012-11-23 14h26.10 IST: No rules file provided, the new user will have no restrictions.
ad main:MESSAGE:28965:2012-11-23 14h26.10 IST: User admin has been successfully created.
Step 4: Create a user
Using /var/tmp as a temporary file holder.
Add a new openvassd user
---------------------------------
Login :
Login : ramank
Authentication (pass/cert) [pass] : pass
Login password (again) :
User rules
---------------
openvassd has a rules system which allows you to restrict the hosts that ramank has the right to test.
For instance, you may want him to be able to scan his own host only.
Please see the openvas-adduser(8) man page for the rules syntax.
Enter the rules for this user, and hit ctrl-D once you are done:
(the user can have an empty rules set)
Login : raman
Password : ***********
Rules :
Is that ok? (y/n) [y] y
user added.
Starting openvas-administrator...
Starting openvas-administrator (via systemctl): [ OK ]
Setup complete, you can now access GSAD at:
https://:9392
Screen shot attached for ref.
Enjoy.
[root@ramank ~]# wget -q -O - http://www.atomicorp.com/installers/atomic | sh
Atomic Archive installer, version 2.0.6
BY INSTALLING THIS SOFTWARE AND BY USING ANY AND ALL SOFTWARE
PROVIDED BY ATOMICORP LIMITED YOU ACKNOWLEDGE AND AGREE:
THIS SOFTWARE AND ALL SOFTWARE PROVIDED IN THIS REPOSITORY IS
PROVIDED BY ATOMICORP LIMITED AS IS, IS UNSUPPORTED AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL ATOMICORP LIMITED, THE
COPYRIGHT OWNER OR ANY CONTRIBUTOR TO ANY AND ALL SOFTWARE PROVIDED
BY OR PUBLISHED IN THIS REPOSITORY BE LIABLE FOR ANY DIRECT,
INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
OF THE POSSIBILITY OF SUCH DAMAGE.
Do you agree to these terms? (yes/no) [Default: yes] y
Invalid input
Do you agree to these terms? (yes/no) [Default: yes] yes
Configuring the [atomic] yum archive for this system
Installing the Atomic GPG key: OK
Downloading atomic-release-1.0-14.fc16.art.noarch.rpm: OK
The Atomic Rocket Turtle archive has now been installed and configured for your system
The following channels are available:
atomic - [ACTIVATED] - contains the stable tree of ART packages
atomic-testing - [DISABLED] - contains the testing tree of ART packages
atomic-bleeding - [DISABLED] - contains the development tree of ART packages
Installation
[root@ramank ~]# yum install openvas
Loaded plugins: langpacks, presto, refresh-packagekit
atomic | 1.9 kB 00:00
atomic/primary_db | 116 kB 00:01
Setting up Install Process
Resolving Dependencies
Total download size: 70 M
Installed size: 201 M
Is this ok [y/N]: y
Downloading Packages:
Installed:
openvas.noarch 0:1.0-3.fc16.art
Dependency Installed:
greenbone-security-assistant.i686 0:3.0.3-3.fc16.art kpathsea.i686 0:2007-66.fc16
libmicrohttpd.i686 0:0.9.22-1.fc16 mingw32-nsis.i686 0:2.46-3.fc16
ncrack.i686 0:0.4-0.1.ALPHA.fc16 netpbm-progs.i686 0:10.47.31-1.fc16
nikto.noarch 1:2.1.5-6.fc16.art openvas-administrator.i686 0:1.2.1-2.fc16.art
openvas-cli.i686 0:1.1.5-3.fc16.art openvas-libraries.i686 0:5.0.4-5.fc16.art
openvas-manager.i686 0:3.0.4-4.fc16.art openvas-scanner.i686 0:3.3.1-2.fc16.art
perl-libwhisker2.noarch 0:2.5-5.fc16.art pnscan.i686 0:1.11-1.fc16.art
python-SocksiPy.noarch 0:1.00-5.fc15 tex-preview.noarch 0:11.86-6.fc16
texlive.i686 0:2007-66.fc16 texlive-dvips.i686 0:2007-66.fc16
texlive-latex.i686 0:2007-66.fc16 texlive-texmf.noarch 0:2007-40.fc16
texlive-texmf-dvips.noarch 0:2007-40.fc16 texlive-texmf-fonts.noarch 0:2007-40.fc16
texlive-texmf-latex.noarch 0:2007-40.fc16 texlive-utils.i686 0:2007-66.fc16
wapiti.noarch 0:2.2.1-4.fc16.art wmi.i686 0:1.3.14-2.fc16.art
Completed.
How to run setup with details.
[root@ramank ~]# openvas-setup
Openvas Setup, Version: 0.3
Step 1: Update NVT's and SCAP data
Please note this step could take some time.
Once completed, NVT's and SCAP data will be updated automatically every 24 hours
Updating NVTs....
Restarting openvas-scanner (via systemctl): Job failed. See system logs and 'systemctl status' for details.
[FAILED]
Updating SCAP data...
[i] This script synchronizes a SCAP data directory with the OpenVAS one.
[i] SCAP dir: /var/lib/openvas/scap-data
[i] Will use rsync
[i] Using rsync: /usr/bin/rsync
[i] Configured SCAP data rsync feed: rsync://feed.openvas.org:/scap-data
OpenVAS feed server - http://openvas.org/
This service is hosted by Intevation GmbH - http://intevation.de/
All transactions are logged.
Please report problems to admin@intevation.de
receiving incremental file list
./
COPYING
1187 100% 1.13MB/s 0:00:00 (xfer#1, to-check=28/30)
COPYING.asc
198 100% 193.36kB/s 0:00:00 (xfer#2, to-check=27/30)
nvdcve-2.0-2002.xml
19507956 100% 112.33kB/s 0:02:49 (xfer#3, to-check=26/30)
nvdcve-2.0-2002.xml.asc
198 100% 0.37kB/s 0:00:00 (xfer#4, to-check=25/30)
nvdcve-2.0-2003.xml
5798371 100% 154.08kB/s 0:00:36 (xfer#5, to-check=24/30)
nvdcve-2.0-2003.xml.asc
198 100% 0.29kB/s 0:00:00 (xfer#6, to-check=23/30)
nvdcve-2.0-2004.xml
12331181 100% 214.26kB/s 0:00:56 (xfer#7, to-check=22/30)
nvdcve-2.0-2004.xml.asc
198 100% 0.46kB/s 0:00:00 (xfer#8, to-check=21/30)
nvdcve-2.0-2005.xml
19671905 100% 159.13kB/s 0:02:00 (xfer#9, to-check=20/30)
nvdcve-2.0-2005.xml.asc
198 100% 0.32kB/s 0:00:00 (xfer#10, to-check=19/30)
nvdcve-2.0-2006.xml
31312876 100% 181.65kB/s 0:02:48 (xfer#11, to-check=18/30)
nvdcve-2.0-2006.xml.asc
198 100% 0.35kB/s 0:00:00 (xfer#12, to-check=17/30)
nvdcve-2.0-2007.xml
29317902 100% 152.60kB/s 0:03:07 (xfer#13, to-check=16/30)
nvdcve-2.0-2007.xml.asc
198 100% 1.62kB/s 0:00:00 (xfer#14, to-check=15/30)
nvdcve-2.0-2008.xml
34128705 100% 158.15kB/s 0:03:30 (xfer#15, to-check=14/30)
nvdcve-2.0-2008.xml.asc
198 100% 0.26kB/s 0:00:00 (xfer#16, to-check=13/30)
nvdcve-2.0-2009.xml
33566018 100% 200.77kB/s 0:02:43 (xfer#17, to-check=12/30)
nvdcve-2.0-2009.xml.asc
198 100% 0.33kB/s 0:00:00 (xfer#18, to-check=11/30)
nvdcve-2.0-2010.xml
48866041 100% 203.87kB/s 0:03:54 (xfer#19, to-check=10/30)
nvdcve-2.0-2010.xml.asc
198 100% 0.22kB/s 0:00:00 (xfer#20, to-check=9/30)
nvdcve-2.0-2011.xml
113504024 100% 152.58kB/s 0:12:06 (xfer#21, to-check=8/30)
nvdcve-2.0-2011.xml.asc
198 100% 193.36kB/s 0:00:00 (xfer#22, to-check=7/30)
nvdcve-2.0-2012.xml
33311229 100% 142.27kB/s 0:03:48 (xfer#23, to-check=6/30)
nvdcve-2.0-2012.xml.asc
198 100% 0.99kB/s 0:00:00 (xfer#24, to-check=5/30)
official-cpe-dictionary_v2.2.xml
16156377 100% 146.36kB/s 0:01:47 (xfer#25, to-check=4/30)
official-cpe-dictionary_v2.2.xml.asc
198 100% 0.21kB/s 0:00:00 (xfer#26, to-check=3/30)
sha1sums
1774 100% 1.89kB/s 0:00:00 (xfer#27, to-check=2/30)
timestamp
13 100% 0.01kB/s 0:00:00 (xfer#28, to-check=1/30)
timestamp.asc
198 100% 0.21kB/s 0:00:00 (xfer#29, to-check=0/30)
sent 585 bytes received 397528878 bytes 164710.78 bytes/sec
total size is 397478331 speedup is 1.00
[i] (Re-)initializing database
[i] Updating CPEs
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2002.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2003.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2004.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2005.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2006.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2007.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2008.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2009.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2010.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2011.xml
[i] Updating /var/lib/openvas/scap-data/nvdcve-2.0-2012.xml
Updating OpenVAS Manager database....
Step 2: Configure GSAD
The Greenbone Security Assistant is a Web Based front end
for managing scans. By default it is configured to only allow
connections from localhost.
Allow connections from any IP? [Default: yes]
Restarting gsad (via systemctl): [ OK ]
Step 3: Choose the GSAD admin users password.
The admin user is used to configure accounts,
Update NVT's manually, and manage roles.
Enter administrator username: admin
Enter Administrator Password:
Verify Administrator Password:
ad main:MESSAGE:28965:2012-11-23 14h26.10 IST: No rules file provided, the new user will have no restrictions.
ad main:MESSAGE:28965:2012-11-23 14h26.10 IST: User admin has been successfully created.
Step 4: Create a user
Using /var/tmp as a temporary file holder.
Add a new openvassd user
---------------------------------
Login :
Login : ramank
Authentication (pass/cert) [pass] : pass
Login password (again) :
User rules
---------------
openvassd has a rules system which allows you to restrict the hosts that ramank has the right to test.
For instance, you may want him to be able to scan his own host only.
Please see the openvas-adduser(8) man page for the rules syntax.
Enter the rules for this user, and hit ctrl-D once you are done:
(the user can have an empty rules set)
Login : raman
Password : ***********
Rules :
Is that ok? (y/n) [y] y
user added.
Starting openvas-administrator...
Starting openvas-administrator (via systemctl): [ OK ]
Setup complete, you can now access GSAD at:
https://
Screen shot attached for ref.
Enjoy.
0 comments:
Post a Comment