Perhaps this is related to the recent "SECURE"->"NORMAL" patch? It will be in openvas-libraries 8.0.7.
Am Mittwoch, 20. Januar 2016, 15:54:18 schrieb john parrel: > I found the next issue with openVas last week. After running a package > update and upgrade on a PC that uses 14.04, with openvas 8 installed from > the source files and working without issues, it was impossible to establish > connections between the manager and the scanner. Every time the logs > gathered a unexpected TLS packet lentgh error or signature algorithm not > allowed. > > Tried different solutions after doing research on the net and observing the > different error logs, it was impossible to rebuild the database with > openvasmd --rebuild, even after trying to regenerate certificates. I know > the instruction "openvas-mkcert-client -n om -i" seems to solve many > problems with openvas manager / gsad not working, but in this case this > didn't solve the issue. > > In the end, we run a backup of the PC and updated the packages that were > ready to be upgraded one by one until seeing if one of them was causing the > problems. In the end it was found the the next packages on the last > available ubuntu download were causing openVas to not be able to establish > secure connection between the manager and the scanner, even if the > certificates being used worked properly before. > > Packages > libgnutls-dev -> version: 2.12.23-12ubuntu2.4 > libgnutls-openssl27 -> version: 2.12.23-12ubuntu2.4 > libgnutls26 -> version: 2.12.23-12ubuntu2.4 > libgnutlsxx27 -> version: 2.12.23-12ubuntu2.4 > > This packages are prerequisite of the openvas-libraries if I'm not > mistaken. This issue happened with the sources currently available on the > openvas website too. (libraries 8.0.6, scanner 5.0.5, manager 6.0.7, > greenbone 6.0.8 and cli 1.4.3) > > The only solution that allowed openvas to work again was to downgrade them > to the other available version after doing a pckg cache, version: > 2.12.23-12ubuntu2 > > Is this a known issue? And if it is, there is another supposed package that > should be used or it only is supposed to work on the downgraded package? > > Thanks in advance! -- Dr. Jan-Oliver Wagner | +49-541-335084-0 | http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
