下指令openvans-setup
無法成功updatingNVTs
Updating CERT 正常
Updating SCAP date正常
請教高手幫忙解決,感恩
[root@localhost ~]# openvas-setup
Openvas Setup, Version: 4.0.1
Redirecting to /bin/systemctl restart redis.service
Step 1: Update NVT, CERT, and SCAP data
Please note this step could take some time.
Once completed, this will be updated automatically every 24 hours
Select download method
Note: If rsync requires a proxy, you should define that before this step.
Downloader [Default: rsync]
Updating NVTs....
--2020-04-10 09:01:23-- http://dl.greenbone.net/community-nvt-feed-current.tar.bz2
正在查找主機 dl.greenbone.net (dl.greenbone.net)... 2a01:130:2000:127::d1, 89.146.224.58
正在連接 dl.greenbone.net (dl.greenbone.net)|2a01:130:2000:127::d1|:80... 連上了。
已送出 HTTP 要求,正在等候回應... 301 Moved Permanently
位置: http://www.greenbone.net [跟隨至新的 URL]
--2020-04-10 09:01:24-- http://www.greenbone.net/
正在查找主機 www.greenbone.net (www.greenbone.net)... 2001:67c:274c:1353::8, 185.135.33.8
正在連接 www.greenbone.net (www.greenbone.net)|2001:67c:274c:1353::8|:80... 失敗: 連線超過時間。
正在連接 www.greenbone.net (www.greenbone.net)|185.135.33.8|:80... 連上了。
已送出 HTTP 要求,正在等候回應... 301 Moved Permanently
位置: https://www.greenbone.net/ [跟隨至新的 URL]
--2020-04-10 09:03:32-- https://www.greenbone.net/
正在連接 www.greenbone.net (www.greenbone.net)|185.135.33.8|:443... 連上了。
已送出 HTTP 要求,正在等候回應... 200 OK
長度: 97000 (95K) [text/html]
Saving to: ‘/tmp/greenbone-nvt-sync.yq5ZZfU3d1/openvas-feed-2020-04-10-14187.tar.bz2’
100%[==================================================================================================>] 97,000 148KB/s in 0.6s
2020-04-10 09:03:34 (148 KB/s) - ‘/tmp/greenbone-nvt-sync.yq5ZZfU3d1/openvas-feed-2020-04-10-14187.tar.bz2’ saved [97000/97000]
bzip2: (stdin) is not a bzip2 file.
tar: Child returned status 2
tar: Error is not recoverable: exiting now
Retrying in 3 seconds...
Updating CERT data...
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
timestamp
13 100% 12.70kB/s 0:00:00 (xfr#1, to-chk=0/1)
sent 43 bytes received 113 bytes 44.57 bytes/sec
total size is 13 speedup is 0.08
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
./
CB-K13.xml
1,485,128 100% 1.00MB/s 0:00:01 (xfr#1, to-chk=25/27)
CB-K14.xml
4,787,657 100% 2.09MB/s 0:00:02 (xfr#2, to-chk=24/27)
CB-K15.xml
6,149,085 100% 3.43MB/s 0:00:01 (xfr#3, to-chk=23/27)
CB-K16.xml
8,390,361 100% 4.34MB/s 0:00:01 (xfr#4, to-chk=22/27)
CB-K17.xml
10,077,587 100% 3.42MB/s 0:00:02 (xfr#5, to-chk=21/27)
CB-K18.xml
4,720,543 100% 2.71MB/s 0:00:01 (xfr#6, to-chk=20/27)
CB-K19.xml
3,799,582 100% 2.83MB/s 0:00:01 (xfr#7, to-chk=19/27)
CB-K20.xml
827,698 100% 1.93MB/s 0:00:00 (xfr#8, to-chk=18/27)
COPYING
1,049 100% 2.50kB/s 0:00:00 (xfr#9, to-chk=17/27)
dfn-cert-2008.xml
3,404 100% 8.11kB/s 0:00:00 (xfr#10, to-chk=16/27)
dfn-cert-2009.xml
761,522 100% 1.31MB/s 0:00:00 (xfr#11, to-chk=15/27)
dfn-cert-2010.xml
1,589,917 100% 1.84MB/s 0:00:00 (xfr#12, to-chk=14/27)
dfn-cert-2011.xml
1,776,990 100% 1.42MB/s 0:00:01 (xfr#13, to-chk=13/27)
dfn-cert-2012.xml
1,987,206 100% 3.58MB/s 0:00:00 (xfr#14, to-chk=12/27)
dfn-cert-2013.xml
1,821,421 100% 2.04MB/s 0:00:00 (xfr#15, to-chk=11/27)
dfn-cert-2014.xml
1,682,415 100% 1.36MB/s 0:00:01 (xfr#16, to-chk=10/27)
dfn-cert-2015.xml
2,134,424 100% 3.60MB/s 0:00:00 (xfr#17, to-chk=9/27)
dfn-cert-2016.xml
2,639,824 100% 2.44MB/s 0:00:01 (xfr#18, to-chk=8/27)
dfn-cert-2017.xml
3,127,078 100% 4.80MB/s 0:00:00 (xfr#19, to-chk=7/27)
dfn-cert-2018.xml
3,533,985 100% 2.70MB/s 0:00:01 (xfr#20, to-chk=6/27)
dfn-cert-2019.xml
3,547,251 100% 3.56MB/s 0:00:00 (xfr#21, to-chk=5/27)
dfn-cert-2020.xml
943,650 100% 822.80kB/s 0:00:01 (xfr#22, to-chk=4/27)
sha1sums
1,306 100% 11.09kB/s 0:00:00 (xfr#23, to-chk=3/27)
sha256sums
1,858 100% 15.78kB/s 0:00:00 (xfr#24, to-chk=2/27)
sha256sums.asc
819 100% 6.95kB/s 0:00:00 (xfr#25, to-chk=1/27)
timestamp
13 100% 0.11kB/s 0:00:00 (xfr#26, to-chk=0/27)
sent 565 bytes received 65,809,555 bytes 3,557,303.78 bytes/sec
total size is 65,791,773 speedup is 1.00
/usr/sbin/greenbone-certdata-sync success
Updating SCAP data...
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
timestamp
13 100% 12.70kB/s 0:00:00 (xfr#1, to-chk=0/1)
sent 43 bytes received 114 bytes 62.80 bytes/sec
total size is 13 speedup is 0.08
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
./
COPYING
1,719 100% 1.64MB/s 0:00:00 (xfr#1, to-chk=42/44)
nvdcve-2.0-2002.xml
14,832,800 100% 3.44MB/s 0:00:04 (xfr#2, to-chk=41/44)
nvdcve-2.0-2003.xml
4,197,428 100% 2.35MB/s 0:00:01 (xfr#3, to-chk=40/44)
nvdcve-2.0-2004.xml
8,678,989 100% 3.48MB/s 0:00:02 (xfr#4, to-chk=39/44)
nvdcve-2.0-2005.xml
14,249,527 100% 4.55MB/s 0:00:02 (xfr#5, to-chk=38/44)
nvdcve-2.0-2006.xml
23,434,769 100% 3.96MB/s 0:00:05 (xfr#6, to-chk=37/44)
nvdcve-2.0-2007.xml
22,177,288 100% 4.72MB/s 0:00:04 (xfr#7, to-chk=36/44)
nvdcve-2.0-2008.xml
24,547,569 100% 4.85MB/s 0:00:04 (xfr#8, to-chk=35/44)
nvdcve-2.0-2009.xml
21,679,165 100% 4.52MB/s 0:00:04 (xfr#9, to-chk=34/44)
nvdcve-2.0-2010.xml
29,125,248 100% 4.65MB/s 0:00:05 (xfr#10, to-chk=33/44)
nvdcve-2.0-2011.xml
61,750,559 100% 4.39MB/s 0:00:13 (xfr#11, to-chk=32/44)
nvdcve-2.0-2012.xml
28,208,692 100% 3.21MB/s 0:00:08 (xfr#12, to-chk=31/44)
nvdcve-2.0-2013.xml
29,943,012 100% 3.81MB/s 0:00:07 (xfr#13, to-chk=30/44)
nvdcve-2.0-2014.xml
31,725,881 100% 3.93MB/s 0:00:07 (xfr#14, to-chk=29/44)
nvdcve-2.0-2015.xml
29,663,387 100% 3.42MB/s 0:00:08 (xfr#15, to-chk=28/44)
nvdcve-2.0-2016.xml
39,437,763 100% 3.71MB/s 0:00:10 (xfr#16, to-chk=27/44)
nvdcve-2.0-2017.xml
54,872,261 100% 4.39MB/s 0:00:11 (xfr#17, to-chk=26/44)
nvdcve-2.0-2018.xml
67,786,879 100% 4.10MB/s 0:00:15 (xfr#18, to-chk=25/44)
nvdcve-2.0-2019.xml
73,366,662 100% 3.65MB/s 0:00:19 (xfr#19, to-chk=24/44)
nvdcve-2.0-2020.xml
13,021,020 100% 1.83MB/s 0:00:06 (xfr#20, to-chk=23/44)
official-cpe-dictionary_v2.2.xml
200,337,248 100% 4.21MB/s 0:00:45 (xfr#21, to-chk=22/44)
sha1sums
2,096 100% 3.25kB/s 0:00:00 (xfr#22, to-chk=21/44)
sha256sums
2,840 100% 4.40kB/s 0:00:00 (xfr#23, to-chk=20/44)
sha256sums.asc
819 100% 1.27kB/s 0:00:00 (xfr#24, to-chk=19/44)
timestamp
13 100% 0.02kB/s 0:00:00 (xfr#25, to-chk=18/44)
oval/
oval/5.10/
oval/5.10/org.mitre.oval/
oval/5.10/org.mitre.oval/c/
oval/5.10/org.mitre.oval/c/oval.xml
268,150 100% 383.40kB/s 0:00:00 (xfr#26, to-chk=9/44)
oval/5.10/org.mitre.oval/i/
oval/5.10/org.mitre.oval/i/oval.xml
9,480,204 100% 3.42MB/s 0:00:02 (xfr#27, to-chk=8/44)
oval/5.10/org.mitre.oval/m/
oval/5.10/org.mitre.oval/m/oval.xml
143,834 100% 225.82kB/s 0:00:00 (xfr#28, to-chk=7/44)
oval/5.10/org.mitre.oval/p/
oval/5.10/org.mitre.oval/p/oval.xml
90,911,155 100% 4.97MB/s 0:00:17 (xfr#29, to-chk=6/44)
oval/5.10/org.mitre.oval/v/
oval/5.10/org.mitre.oval/v/family/
oval/5.10/org.mitre.oval/v/family/ios.xml
2,012,118 100% 2.80MB/s 0:00:00 (xfr#30, to-chk=4/44)
oval/5.10/org.mitre.oval/v/family/macos.xml
453,775 100% 600.46kB/s 0:00:00 (xfr#31, to-chk=3/44)
oval/5.10/org.mitre.oval/v/family/pixos.xml
10,014 100% 13.23kB/s 0:00:00 (xfr#32, to-chk=2/44)
oval/5.10/org.mitre.oval/v/family/unix.xml
31,372,831 100% 4.40MB/s 0:00:06 (xfr#33, to-chk=1/44)
oval/5.10/org.mitre.oval/v/family/windows.xml
51,773,463 100% 5.11MB/s 0:00:09 (xfr#34, to-chk=0/44)
sent 905 bytes received 979,710,790 bytes 4,525,227.23 bytes/sec
total size is 979,469,178 speedup is 1.00
/usr/sbin/greenbone-scapdata-sync success
Updating OpenVAS Manager certificates: Complete
Pausing while openvas-scanner loads NVTs...Done
Step 2: Choose the GSAD admin users password.
The admin user is used to configure accounts,
Update NVT's manually, and manage roles.
Enter administrator username [Default: admin] :
Enter Administrator Password:
Verify Administrator Password:
Setup complete, you can now access GSAD at:
https://:9392
已邀請的邦友 {{ invite_list.length }}/5
嗯,先請問您的環境?
不同的OS、以及免費版(Community Edition)或付費版
好像在做法上會有些不同。
以下是我個人的經驗。
OS環境是 CentOS 7,安裝的是免費版的 OpenVAS。
首先
執行 openvas-setup 只是初始設定而已
跑完不見得會更新到目前最新狀態。
從您提供的資料來看
您應該已經順利安裝執行完畢。
後續應該要用 crontab 每日定期執行更新。
您找找看在 /usr/sbin/ 裡面,是否有下面這三個 script
greenbone-nvt-sync (更新 NVT)
greenbone-scapdata-sync (更新 SCAP)
greenbone-certdata-sync (更新 CERT)
每天錯開時間執行這三個檔案以保持資料同步。
不過,根據我的經驗
即使每天定期執行這三個更新 script
您在管理主畫面的 Feed Status 也難看到隨時都是 "current" 的狀態
經常都是 x days old (遇過 x=10 的時候,也就是超過一個多星期無法更新)
建議您,就不用太擔心這個『幾天』的問題了。
除非發現有某一項的狀態是 "too old" 時
再用手動執行一次更新的 script 即可。
在國外網站也曾發現有網友提過類似的問題
查詢 Feed Status 總是落後個幾天,最後仍是無解。
若您跟我一樣用的是免費社群版,那就接受這一點點的小瑕疵吧。
iThome鐵人賽
看影片追技術