From: <los...@ya...> - 2004-04-24 12:30:44
|
Here's what I did to get vulnscand to work (well, almost). 1. Applied the patch related to bug#810. 2. In $OPENNMS_HOME/etc/vulnscand-configuration.xml, i specified the server name, server-port, server-username, server-password, status and scan-level. ----snip--------------------------- [root@tux-sid etc]# more vulnscand-configuration.xml <?xml version="1.0"?> <vulnscand-configuration rescan-frequency="86400000" initial-sleep-time="300000" max-suspect-thread-pool-size="3" max-rescan-thread-pool-size="3" server-address="localhost" server-port="1241" server-username="sid" server-password="xxxx" status="true" > <managed-interfaces status="true" scan-level="2" /> . . . -------------------------------- 3. In the nessusd config, add this line to the end: ----------------- ssl_version = none ----------------- You need to do this because the OpenNMS nessus client speaks only in cleartext. 4. Start nessusd (after having creating a user) 5. restart OpenNMS. Now I see in events that each vulnerability found is reported. However, funnily its scanning only the localhost!! So I still have to figure out why it does that. And then maybe instead of reporting the vulnerabilities discovered as events, we could add a per node vuln assessment report. Hope this helps, Siddhartha --- Tarus Balog <ta...@op...> wrote: > > On Apr 16, 2004, at 4:36 AM, Siddhartha Jain wrote: > > > > > > I am travelling as of now, so when I get back I > can > > give the list more info on how I got it to work. > > > > I am traveling as well, but if you'll write > something up I'll put it on > the website. > > -T > > ________________________________________________________________________ > > ___ > Tarus Balog, OpenNMS Maintainer Main: +1 919 545 > 2553 > Blast Internet Services, Inc. Fax: +1 > 503-961-7746 > Email: ta...@op... URL: > http://www2.blast.com/tarus > PGP Key Fingerprint: 8945 8521 9771 FEC9 5481 512B > FECA 11D2 FD82 B45C > > _______________________________________________ > bugs mailing list (bu...@op...) > To subscribe, unsubscribe, or change your list > options, go to: > http://lists.opennms.org/mailman/listinfo/bugs ____________________________________________________________ Yahoo! Messenger - Communicate instantly..."Ping" your friends today! Download Messenger Now http://uk.messenger.yahoo.com/download/index.html |