the same any solutions?
The same here with raspberry pi 4 8gb. I’ve tried everysolution proposed
It worked for me like this:
sudo runuser -u _gvm – gvmd --get-users
sudo gvm-check-setup
sudo chmod 777 -R /var/log/gvm
sudo gvm-feed-update
After done the above steps, then we will need wait for 20 minutes to let the scan config appear or check log /var/log/gvm/gvmd.log to find following entries:
event task:MESSAGE:2022-03-08 04h22.03 UTC:51518: Status of task (9c93258b-6404-4980-b01e-3db73e47ef2e) has changed to New
event task:MESSAGE:2022-03-08 04h22.05 UTC:51527: Status of task (5ffe8a5b-29a5-409b-b30d-ef1fbcb614d4) has changed to New
md manage: INFO:2022-03-08 04h22.56 UTC:50913: Updating VTs in database … 95702 new VTs, 0 changed VTs
md manage: INFO:2022-03-08 04h22.59 UTC:50913: Updating VTs in database … done (95702 VTs).
event config:MESSAGE:2022-03-08 04h23.05 UTC:51570: Scan config Log4Shell (e3efebc5-fc0d-4cb6-b1b4-55309d0a89f6) has been created by admin
event config:MESSAGE:2022-03-08 04h23.05 UTC:51570: Scan config Full and fast (daba56c8-73ec-11df-a475-002264764cea) has been created by admin
event config:MESSAGE:2022-03-08 04h23.05 UTC:51570: Scan config Huawei Datacom Product Security Configuration Audit Guide (aab5c4a1-eab1-4f4e-acac-8c36d08de6bc) has been created by admin
event config:MESSAGE:2022-03-08 04h23.06 UTC:51570: Scan config IT-Grundschutz Kompendium (c4b7c0cb-6502-4809-b034-8e635311b3e6) has been created by admin
event config:MESSAGE:2022-03-08 04h23.06 UTC:51570: Scan config empty (085569ce-73ed-11df-83c3-002264764cea) has been created by admin
event config:MESSAGE:2022-03-08 04h23.06 UTC:51570: Scan config Host Discovery (2d3f051c-55ba-11e3-bf43-406186ea4fc5) has been created by admin
event config:MESSAGE:2022-03-08 04h23.07 UTC:51570: Scan config GaussDB Kernel V500R001C00 Security Hardening Guide (2eec8313-fee4-442a-b3c4-fa0d5dc83d61) has been created by admin
event config:MESSAGE:2022-03-08 04h23.08 UTC:51570: Scan config Base (d21f6c81-2b88-4ac1-b7b4-a2a9f2ad4663) has been created by admin
event config:MESSAGE:2022-03-08 04h23.09 UTC:51570: Scan config GaussDB 100 V300R001C00 Security Hardening Guide (Standalone) (61327f09-8a54-4854-9e1c-16798285fb28) has been created by admin
event config:MESSAGE:2022-03-08 04h23.09 UTC:51570: Scan config System Discovery (bbca7412-a950-11e3-9109-406186ea4fc5) has been created by admin
event config:MESSAGE:2022-03-08 04h23.10 UTC:51570: Scan config openGauss Security Hardening Guide (c2b049f9-6d3d-45be-871f-2252895ed9e8) has been created by admin
event config:MESSAGE:2022-03-08 04h23.11 UTC:51570: Scan config EulerOS Linux Security Configuration (9f822ad3-9208-4e02-ac03-78dce3ca9a23) has been created by admin
event config:MESSAGE:2022-03-08 04h23.11 UTC:51570: Scan config Discovery (8715c877-47a0-438d-98a3-27c7a6ab2196) has been created by admin
event task:MESSAGE:2022-03-08 04h23.30 UTC:51626: Status of task (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has changed to New
event task:MESSAGE:2022-03-08 04h23.30 UTC:51626: Task Unnamed (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has been created by admin
event task:MESSAGE:2022-03-08 04h23.42 UTC:51664: Status of task Unnamed (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has changed to Requested
event task:MESSAGE:2022-03-08 04h23.42 UTC:51664: Task Unnamed (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has been requested to start by admin
event task:MESSAGE:2022-03-08 04h24.00 UTC:51667: Status of task Unnamed (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has changed to Queued
event task:MESSAGE:2022-03-08 04h24.10 UTC:51667: Status of task Unnamed (cee1e4fd-ccf4-4441-afd4-46c0e2b5810b) has changed to Running
Hi @Pdanny
I am also facing the same issue on my kali virtual machine, I have performed all the actions mentioned here in the page but still while creating a task it pops out the same error.
Can you please tell me what changes have you made on the pwpolicy.conf as I am also having the same symptoms. Also if there is any other solution.
Thanks in advance.
Hi Buda,
When you ran “gvm-setup” and “gvm-check-setup” were there warnings?
If there were warnings, take time to go through each line and search for how to neutralize/tackle those warnings. This is my best advice on this.
If you let me know more after the above steps I might be able to do some findings for you.
Best of luck, Buda.
Hi @Pdanny,
These are the result of the above two commands
┌──(kali㉿kali)-[~]
└─$ sudo gvm-setup
[>] Starting PostgreSQL service
[>] Creating GVM's certificate files
[>] Creating PostgreSQL database
[i] User _gvm already exists in PostgreSQL
[i] Database gvmd already exists in PostgreSQL
[i] Role DBA already exists in PostgreSQL
[*] Applying permissions
NOTICE: role "_gvm" is already a member of role "dba"
GRANT ROLE
[i] Extension uuid-ossp already exists for gvmd database
[i] Extension pgcrypto already exists for gvmd database
[>] Migrating database
[>] Checking for GVM admin user
[>] Updating GVM feeds
[*] Updating NVT (Network Vulnerability Tests feed from Greenbone Security Feed/Community Feed)
[>] Updating Vulnerability Tests info into Redis store from VT files
q
[*] Updating GVMD Data
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
timestamp
13 100% 12.70kB/s 0:00:00 (xfr#1, to-chk=0/1)
sent 43 bytes received 109 bytes 43.43 bytes/sec
total size is 13 speedup is 0.09
[*] Updating Scap Data
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
timestamp
13 100% 12.70kB/s 0:00:00 (xfr#1, to-chk=0/1)
sent 43 bytes received 115 bytes 63.20 bytes/sec
total size is 13 speedup is 0.08
[*] Updating Cert Data
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/
All transactions are logged.
If you have any questions, please use the Greenbone community portal.
See https://community.greenbone.net for details.
By using this service you agree to our terms and conditions.
Only one sync per time, otherwise the source ip will be temporarily blocked.
receiving incremental file list
timestamp
13 100% 12.70kB/s 0:00:00 (xfr#1, to-chk=0/1)
sent 43 bytes received 115 bytes 63.20 bytes/sec
total size is 13 speedup is 0.08
[+] GVM feeds updated
[*] Checking Default scanner
08b69003-5fc2-4037-a479-93b440211c73 OpenVAS /run/ospd/ospd.sock 0 OpenVAS Default
[i] No need to alter default scanner
[+] Done
[i] Admin user already exists for GVM
[i] If you have forgotten it, you can change it. See gvmd manpage for more information
[>] You can now run gvm-check-setup to make sure everything is correctly configured
┌──(kali㉿kali)-[~]
└─$ sudo gvm-check-setup
[sudo] password for kali:
gvm-check-setup 21.4.3
Test completeness and readiness of GVM-21.4.3
Step 1: Checking OpenVAS (Scanner)...
OK: OpenVAS Scanner is present in version 21.4.4.
OK: Server CA Certificate is present as /var/lib/gvm/CA/servercert.pem.
Checking permissions of /var/lib/openvas/gnupg/*
OK: _gvm owns all files in /var/lib/openvas/gnupg
OK: redis-server is present.
OK: scanner (db_address setting) is configured properly using the redis-server socket: /var/run/redis-openvas/redis-server.sock
OK: redis-server is running and listening on socket: /var/run/redis-openvas/redis-server.sock.
OK: redis-server configuration is OK and redis-server is running.
OK: _gvm owns all files in /var/lib/openvas/plugins
OK: NVT collection in /var/lib/openvas/plugins contains 96826 NVTs.
Checking that the obsolete redis database has been removed
OK: No old Redis DB
OK: ospd-OpenVAS is present in version 21.4.4.
Step 2: Checking GVMD Manager ...
OK: GVM Manager (gvmd) is present in version 21.4.5.
Step 3: Checking Certificates ...
OK: GVM client certificate is valid and present as /var/lib/gvm/CA/clientcert.pem.
OK: Your GVM certificate infrastructure passed validation.
Step 4: Checking data ...
OK: SCAP data found in /var/lib/gvm/scap-data.
OK: CERT data found in /var/lib/gvm/cert-data.
Step 5: Checking Postgresql DB and user ...
OK: Postgresql version and default port are OK.
gvmd | _gvm | UTF8 | en_US.UTF-8 | en_US.UTF-8 |
OK: At least one user exists.
Step 6: Checking Greenbone Security Assistant (GSA) ...
Oops, secure memory pool already initialized
OK: Greenbone Security Assistant is present in version 21.4.4.
Step 7: Checking if GVM services are up and running ...
OK: ospd-openvas service is active.
OK: gvmd service is active.
OK: gsad service is active.
Step 8: Checking few other requirements...
OK: nmap is present in version 21.4.4.
OK: ssh-keygen found, LSC credential generation for GNU/Linux targets is likely to work.
OK: nsis found, LSC credential package generation for Microsoft Windows targets is likely to work.
OK: xsltproc found.
WARNING: Your password policy is empty.
SUGGEST: Edit the /etc/gvm/pwpolicy.conf file to set a password policy.
It seems like your GVM-21.4.3 installation is OK.
I get exactly the same error and results as @buda. The solution in post #10 doesn’t work for me since gvmd --get-users --verbose
gives no output (so no users?). Any further suggestions?
@buda I researched a bit further and managed to fix it on my kali setup, using some of the suggestions in this post.
The problem seems to be that you can only change Feed Owner when you are running the gvmd commands as the _gvm user.
This is what I did:
-
sudo runuser -u _gvm -- gvmd --get-users --verbose
(notice this should be two - characters between _gvm and gvmd, not a long dash). This should return the users (mine gave only admin), and their uid -
sudo runuser -u _gvm -- gvmd --modify-setting 78eceaec-3385-11ea-b237-28d24461215b --value <uid>
Where<uid>
is the long guid string you just got from the command above, for the user you are running openvas under)
I’m using OpenVAS in Kali Linux for a specific task, and I had weird issues installing because Postgre had 2 versions installed and they were conflicting. Once I sorted that out and installed, I’m still getting weird issues.
I tried setting up a scan of a specific asset and got the error: Failed to find config ‘daba56c8-73ec-11df-a475-002264764cea
A quick search of this forum shows my GVMD data may be outdated. I used each of the greenbone-feed-sync --type
to update, which didn’t seem to do anything. I’m still showing 89 days old, but from what I’ve read that doesn’t really matter.
I’m still getting the same error trying to set up a scan. When I go to “Scan Configs” it is empty.
Outside of completely blowing my Kali VM away and starting from a clean install, what can I do to sort this out?
hello Eric du I have the same problem as others also with me comes in OpenVas when I go to new task the error message Failed to find config ‘daba56c8-73ec-11df-a475-002264764cea’.
well I tried to fix the error with your input, but did not funkltioniert.
sudo runuser -u _gvm – gvmd --modify-setting 78eceaec-3385-11ea-b237-28d24461215b --value
My input was like this : sudo runuser -u _gvm – gvmd --modify-setting 78eceaec-3385-11ea-b237-28d24461215b --value 1c4a3aa4-a585-45c0-8062-87d2201e484f
nothing happens from all this. Still have the same error message. i ask for help.
wolfi
You can try to run gvmd --rebuild-gvmd-data=all
maybe there was a stuck while processing the sync.
please note that system works after feeds are updated and processed by the gvm…
Eero
I hope this helps you. After so much trying I finally found the solution.
This is just for those of you who are getting that error after going through all the installation steps, your first scan.
By default an “admin” user is created, you have to create another user with the “user” role. With that new user I have been able to generate scans. I have created the user from the GUI console, I imagine that by CLI it is also possible, but I did not try it.
Well that’s all guys.
This is not necessary. Create an (admin) user, set the user as Feed Import Owner, download the feed data (all of them!), start the service daemons and let ospd-openvas and gvmd finish loading the feed data. Loading the feed data really takes a while! I’ve written some hints for the container docs when the loading of each data type is finished at Greenbone Community Containers 22.4 - Greenbone Community Documentation which is also valid for non-container setups.
This resolve my problem, now i can scan and save the task.
thank you, Fairmuzammil!
I installed openvas on Kali in Virtualbox and this is the process that worked for me How to install OpenVAS on Kali - YouTube
A post was split to a new topic: Md manage:WARNING:2022-11-23 08h33.32 UTC:63422: osp_scanner_feed_version: failed to connect to /run/ospd/ospd-openvas.sock
This worked for me, thanks.
(kali㉿kali)-[~]
└─$ sudo greenbone-feed-sync --type GVMD_DATA
Running as root. Switching to user ‘_gvm’ and group ‘_gvm’.
Trying to acquire lock on /var/lib/gvm/feed-update.lock
/var/lib/gvm/feed-update.lock is locked by another process. Waiting 5 seconds
before next try.
Trying to acquire lock on /var/lib/gvm/feed-update.lock
/var/lib/gvm/feed-update.lock is locked by another process. Waiting 5 seconds
before next try.
Trying to acquire lock on /var/lib/gvm/feed-update.lock
/var/lib/gvm/feed-update.lock is locked by another process. Waiting 5 seconds
before next try.
^C
when i start GVMD_DATA it’s error and i try delete update.lock already but still doesn’t work please help me !