Tiggez
1
Hello,
I believe, I have some kind of misconception about the scanner. In particular the OS and package detection.
When scanning a debian target (authenticated, full and fast) i would expect to find outdated docker installations. Not the docker images obviously.
But I get only results when the used user is in the docker group on the target.
Why doesn’t find openvas the outdated package per dpkg / apt?
Best regard
Tiggez
Eero
2
@Tiggez try scanning with root user?
Eerp
Tiggez
3
Like I said, when the account is in the docker group it works.
But the root / docker admin access seems unnecessary.
Normal user rights should be enough.
Lukas
(Lukas.Grunwald)
4
The scanner needs root capabilities like RAW_SOCKET otherwise many VTs will not produce any results.
1 Like
Tiggez
5
Hi, thank you for the clarification.
But maybe this should be mentioned in:
Best regards
Tiggez