You MUST install this otherwise CMAKE does not function:
apk add build-base
Issue at building the first component (gvm-libs):
CMake Error at util/CMakeLists.txt:59 (message):
The gpgme library is required.
-- Looking for libgcrypt...
-- Looking for libgcrypt... /usr/lib/libgcrypt.so
-- Looking for freeradius-client library...
-- Looking for radcli library...
-- No suitable radius library found - radius support disabled
-- Looking for libldap...
-- No ldap library found - ldap support disabled
-- Could NOT find Doxygen (missing: DOXYGEN_EXECUTABLE)
-- WARNING: Doxygen is required to build the HTML docs.
-- Configuring incomplete, errors occurred!
I’m sure this is just tip of the iceberg because all those missing libs later on what I could not find an equivalent of would come back to hunt me so my question is are there any plans to create OpenVAS10 packages for Alpine Linux in the near future?
Anyone else here who managed to get GVM10 run on Alpine Linux?
I did that how-to 3 years ago. At that time, it was working fine.
You don’t need to build openvas from source because is already available on Alpine Linux, in community repo.
You can go ahead and install the packages you need with:
apk add openvas
apk add gvmd
apk add gvm-tools
apk add openvas-smb
apk add greenbone-security-assistant
The tutorial was also broken because openvasmd was renamed to gvmd, after install there are multiple permission problems as well. I thought it is the best idea to get the latest version working instead.
which is also broken, not just package changes and permission problems but GVMd cannot be started with:
md main:MESSAGE:2020-05-10 16h41.12 utc:3451: Greenbone Vulnerability Manager version 9.0.0 (DB revision 221)
md manage:WARNING:2020-05-10 16h41.12 utc:3452: sql_open: PQconnectStart to 'gvmd' failed: could not connect to server: No such file or directory
Is the server running locally and accepting
connections on Unix domain socket "/tmp/.s.PGSQL.5432"?
md manage:WARNING:2020-05-10 16h41.12 utc:3452: init_manage_process: sql_open failed
md main:MESSAGE:2020-05-10 16h42.46 utc:3636: Greenbone Vulnerability Manager version 9.0.0 (DB revision 221)
md manage:WARNING:2020-05-10 16h42.46 utc:3637: sql_open: PQconnectStart to 'gvmd' failed: could not connect to server: No such file or directory
Is the server running locally and accepting
connections on Unix domain socket "/tmp/.s.PGSQL.5432"?
md manage:WARNING:2020-05-10 16h42.46 utc:3637: init_manage_process: sql_open failed
md main:MESSAGE:2020-05-10 16h48.55 utc:3936: Greenbone Vulnerability Manager version 9.0.0 (DB revision 221)
md manage:WARNING:2020-05-10 16h48.55 utc:3937: sql_open: PQconnectStart to 'gvmd' failed: could not connect to server: No such file or directory
Is the server running locally and accepting
connections on Unix domain socket "/tmp/.s.PGSQL.5432"?
md manage:WARNING:2020-05-10 16h48.55 utc:3937: init_manage_process: sql_open failed
Which makes me think it need postgres DB installed which was not part of the guide. I have an older openvas running in docker only using redis. Did postgres become a requirement? I would rather not install it unless it’s a must.
rc-service gvmd star t
* ./: correcting owner
* /run/redis-openvas: creating directory
* /run/redis-openvas: correcting owner
* Starting Redis server ... [ ok ]
* Starting Remotely control an OpenVAS Scanner ...
Traceback (most recent call last):
File "/usr/bin/ospd-openvas", line 6, in <module>
from pkg_resources import load_entry_point
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 3252, in <module>
def _initialize_master_working_set():
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 3235, in _call_aside
f(*args, **kwargs)
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 3264, in _initialize_master_working_set
working_set = WorkingSet._build_master()
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 583, in _build_master
ws.require(__requires__)
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 900, in require
needed = self.resolve(parse_requirements(requirements))
File "/usr/lib/python3.8/site-packages/pkg_resources/__init__.py", line 786, in resolve
raise DistributionNotFound(req, requirers)
pkg_resources.DistributionNotFound: The 'packaging' distribution was not found and is required by ospd-openvas
* start-stop-daemon: failed to start `/usr/bin/ospd-openvas'
* Failed to start Remotely control an OpenVAS Scanner [ !! ]
* ERROR: ospd-openvas failed to start
* ERROR: cannot start gvmd as ospd-openvas would not start
Small correction:
apk add py3-packaging
In browser:
After completing the tutorial: Secure Connection Failed
An error occurred during a connection to :9392. PR_END_OF_FILE_ERROR
GVMD log:
md manage: INFO:2020-05-18 06h51.58 utc:2697: update_scap: Updating SCAP info succeeded
md manage:WARNING:2020-05-18 06h52.13 utc:2697: sql_exec_internal: PQexec failed: ERROR: relation "cert_bund_advs" does not exist
LINE 1: SELECT EXISTS (SELECT * FROM cert_bund_advs WHERE creation_...
^
(7)
md manage:WARNING:2020-05-18 06h52.13 utc:2697: sql_exec_internal: SQL: SELECT EXISTS (SELECT * FROM cert_bund_advs WHERE creation_time > coalesce (CAST ((SELECT value FROM meta WHERE name = 'cert_check_time') AS INTEGER), 0));
md manage:WARNING:2020-05-18 06h52.13 utc:2697: sql_x_internal: sql_exec_internal failed
md manage: INFO:2020-05-18 06h56.58 utc:3821: OSP service has newer VT status (version 202005151012) than in database (version 0, 0 VTs). Starting update ...
But it is only an issue with https, it seems some SQL inserts don’t complete properly with http it works.
I’m happy about the new web interface is more responsive however it is the same counterintuitive design like how do you create a new TASK which runs right now, why can’t you manually start tasks which is scheduled and the whole adding hosts and tasks is more than weird with that small icon anyway it is not OPS issue anymore but DEVs. Thank you for your contribution.