I have installed openvas on a debian operating system. Every services are running and I can scan targets. An issue happens when the scan is done : the report contains vulnerabilities but the scan severity is “N/A”. The /var/log/openvas/gsad.log log file contains a lot of error from MHD:
I have read on different subject that it can maybe be caused by a bad data base but I have done some research on that and I didn’t find anything. I have previously done the “openvasmd --rebuild” command, I don’t know if it’s linked.
My GSA configuration is the following : ExecStart=/usr/sbin/gsad --foreground --listen=127.0.0.1 --port=9392 -mlisten=127.0.0.1 --mport=9390
please provide information about used versions as well.
Did you use github sources to install? What debian OS are you using? Can you see suspicious entries in gvmd.log too?
In gvmd.log, I have an issue with /tmp/ospd.sock, this socket isn’t created so gvmd can not connect to it. I have not already found how to solve this issue.
When I do the following command, I got this issue:
I don’t know if MHD errors can come from this one
Thank you !
No they aren’t. MHD messages are raised by the libmicrohttpd which is used in our web server gsad. They are raised during answering http requests and can be ignored (most of the time).