Hello, I found the next issue with openVas last week. After running a package update and upgrade on a PC that uses 14.04, with openvas 8 installed from the source files and working without issues, it was impossible to establish connections between the manager and the scanner. Every time the logs gathered a unexpected TLS packet lentgh error or signature algorithm not allowed.
Tried different solutions after doing research on the net and observing the different error logs, it was impossible to rebuild the database with openvasmd --rebuild, even after trying to regenerate certificates. I know the instruction "openvas-mkcert-client -n om -i" seems to solve many problems with openvas manager / gsad not working, but in this case this didn't solve the issue. In the end, we run a backup of the PC and updated the packages that were ready to be upgraded one by one until seeing if one of them was causing the problems. In the end it was found the the next packages on the last available ubuntu download were causing openVas to not be able to establish secure connection between the manager and the scanner, even if the certificates being used worked properly before. Packages libgnutls-dev -> version: 2.12.23-12ubuntu2.4 libgnutls-openssl27 -> version: 2.12.23-12ubuntu2.4 libgnutls26 -> version: 2.12.23-12ubuntu2.4 libgnutlsxx27 -> version: 2.12.23-12ubuntu2.4 This packages are prerequisite of the openvas-libraries if I'm not mistaken. This issue happened with the sources currently available on the openvas website too. (libraries 8.0.6, scanner 5.0.5, manager 6.0.7, greenbone 6.0.8 and cli 1.4.3) The only solution that allowed openvas to work again was to downgrade them to the other available version after doing a pckg cache, version: 2.12.23-12ubuntu2 Is this a known issue? And if it is, there is another supposed package that should be used or it only is supposed to work on the downgraded package? Thanks in advance!
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
