In my GVM environment, the scan with SSH Key authentification doesn’t work.
I use openvas with the following characteristics :
-
Docker installation with the GVM components versions :
-
https://github.com/greenbone/gvm-libs/archive/v20.8.0.tar.gz
-
https://github.com/greenbone/openvas-scanner/archive/v20.8.0.tar.gz
-
https://github.com/greenbone/openvas-smb/archive/v1.0.5.tar.gz
-
https://github.com/greenbone/ospd-openvas/archive/v20.8.0.tar.gz
-
gvm_tools_version=“2.1.0”
-
python_gvm_version=“1.6.0”
-
on a docker image : ubuntu:20.04
-
-
Configuration of the server that hosts the GVM environment : Debian buster / OpenSSL 1.1.1d / libssh 0.8.7-1 / openssh 1:7.9
-
Configuration of the target machine to scan : Ubuntu xenial / OpenSSL 1.1.1h / openssh 1:7.2
-
We try to execute some authenticated scans with RSA private generated with ssh-keygen and with openssl (with and without passphrase)
-
The scan are launched but the authentication fails. So, only the vulnerability without authentication are raised.
-
Read posts to try to resolve the problem :
https://github.com/greenbone/gsa/issues/1096
https://community.tenable.com/s/article/SSH-Public-Key-Authentication
==> According to my environment, can you help me to resolve my problem of configuration of authentication with SSH key ? Can you transmit some process / commands to generate a pair of private/public keys that runs correctly ?
Thank you