Menu
▾
▴
Re: [opennms-bugs] Vulnscand in 1.1.2
|
From: <los...@ya...> - 2004-04-24 12:30:44
|
Here's what I did to get vulnscand to work (well,
almost).
1. Applied the patch related to bug#810.
2. In $OPENNMS_HOME/etc/vulnscand-configuration.xml, i
specified the server name, server-port,
server-username, server-password, status and
scan-level.
----snip---------------------------
[root@tux-sid etc]# more vulnscand-configuration.xml
<?xml version="1.0"?>
<vulnscand-configuration
rescan-frequency="86400000"
initial-sleep-time="300000"
max-suspect-thread-pool-size="3"
max-rescan-thread-pool-size="3"
server-address="localhost"
server-port="1241"
server-username="sid"
server-password="xxxx"
status="true"
>
<managed-interfaces
status="true"
scan-level="2"
/>
.
.
.
--------------------------------
3. In the nessusd config, add this line to the end:
-----------------
ssl_version = none
-----------------
You need to do this because the OpenNMS nessus client
speaks only in cleartext.
4. Start nessusd (after having creating a user)
5. restart OpenNMS.
Now I see in events that each vulnerability found is
reported. However, funnily its scanning only the
localhost!! So I still have to figure out why it does
that. And then maybe instead of reporting the
vulnerabilities discovered as events, we could add a
per node vuln assessment report.
Hope this helps,
Siddhartha
--- Tarus Balog <ta...@op...> wrote: >
> On Apr 16, 2004, at 4:36 AM, Siddhartha Jain wrote:
> >
> >
> > I am travelling as of now, so when I get back I
> can
> > give the list more info on how I got it to work.
> >
>
> I am traveling as well, but if you'll write
> something up I'll put it on
> the website.
>
> -T
>
>
________________________________________________________________________
>
> ___
> Tarus Balog, OpenNMS Maintainer Main: +1 919 545
> 2553
> Blast Internet Services, Inc. Fax: +1
> 503-961-7746
> Email: ta...@op... URL:
> http://www2.blast.com/tarus
> PGP Key Fingerprint: 8945 8521 9771 FEC9 5481 512B
> FECA 11D2 FD82 B45C
>
> _______________________________________________
> bugs mailing list (bu...@op...)
> To subscribe, unsubscribe, or change your list
> options, go to:
> http://lists.opennms.org/mailman/listinfo/bugs
____________________________________________________________
Yahoo! Messenger - Communicate instantly..."Ping"
your friends today! Download Messenger Now
http://uk.messenger.yahoo.com/download/index.html
|