Commit 0244d8b9 authored by Mati's avatar Mati

Imported Upstream version 3.3+beta2

parents
This source diff could not be displayed because it is too large. You can view the blob instead.
# OpenVAS
# $Id$
# Description: Top-level cmake control for the Scanner.
#
# Authors:
# Matthew Mundell <matthew.mundell@greenbone.net>
# Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>
#
# Copyright:
# Copyright (C) 2011 Greenbone Networks GmbH
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# or, at your option, any later version as published by the Free
# Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
message ("-- Configuring the Scanner...")
project (openvas-scanner C)
cmake_minimum_required (VERSION 2.6)
if (POLICY CMP0005)
cmake_policy (SET CMP0005 OLD)
endif (POLICY CMP0005)
include (FindPkgConfig)
if (NOT CMAKE_BUILD_TYPE)
set (CMAKE_BUILD_TYPE Debug)
endif (NOT CMAKE_BUILD_TYPE)
## Retrieve svn revision (at configure time)
# Not using Subversion_WC_INFO, as it would have to connect to the repo
find_program (SVN_EXECUTABLE svn DOC "subversion command line client")
macro (Subversion_GET_REVISION dir variable)
execute_process (COMMAND ${SVN_EXECUTABLE} info ${CMAKE_SOURCE_DIR}/${dir}
OUTPUT_VARIABLE ${variable}
OUTPUT_STRIP_TRAILING_WHITESPACE)
string (REGEX REPLACE "^(.*\n)?Revision: ([^\n]+).*"
"\\2" ${variable} "${${variable}}")
endmacro (Subversion_GET_REVISION)
if (NOT CMAKE_BUILD_TYPE MATCHES "Release")
if (EXISTS ".svn/")
if (SVN_EXECUTABLE)
Subversion_GET_REVISION(. ProjectRevision)
set (SVN_REVISION ".SVN.r${ProjectRevision}")
else (SVN_EXECUTABLE)
set (SVN_REVISION ".SVN")
endif (SVN_EXECUTABLE)
endif (EXISTS ".svn/")
endif (NOT CMAKE_BUILD_TYPE MATCHES "Release")
# TODO: Check pkg-config (maybe with code like in gsa/CMakeLists.txt).
## CPack configuration
set (CPACK_CMAKE_GENERATOR "Unix Makefiles")
set (CPACK_GENERATOR "TGZ")
set (CPACK_INSTALL_CMAKE_PROJECTS ".;openvas-scanner;ALL;/")
set (CPACK_MODULE_PATH "")
set (CPACK_RESOURCE_FILE_LICENSE "${CMAKE_SOURCE_DIR}/COPYING")
set (CPACK_RESOURCE_FILE_README "${CMAKE_SOURCE_DIR}/README")
set (CPACK_RESOURCE_FILE_WELCOME "${CMAKE_SOURCE_DIR}/README")
set (CPACK_SOURCE_GENERATOR "TGZ")
set (CPACK_SOURCE_TOPLEVEL_TAG "")
set (CPACK_SYSTEM_NAME "")
set (CPACK_TOPLEVEL_TAG "")
set (CPACK_PACKAGE_VERSION_MAJOR "3")
set (CPACK_PACKAGE_VERSION_MINOR "3")
set (CPACK_PACKAGE_VERSION_PATCH "+beta2${SVN_REVISION}")
set (CPACK_PACKAGE_VERSION "${CPACK_PACKAGE_VERSION_MAJOR}.${CPACK_PACKAGE_VERSION_MINOR}${CPACK_PACKAGE_VERSION_PATCH}")
set (CPACK_PACKAGE_FILE_NAME "${PROJECT_NAME}-${CPACK_PACKAGE_VERSION}")
set (CPACK_SOURCE_PACKAGE_FILE_NAME "${PROJECT_NAME}-${CPACK_PACKAGE_VERSION}")
set (CPACK_PACKAGE_VENDOR "The OpenVAS Project")
set (CPACK_SOURCE_IGNORE_FILES
"/.svn/"
"/_CPack_Packages/"
"/CMakeFiles/"
"cmake$"
"swp$"
"Cache.txt$"
".tar.gz"
"install_manifest.txt"
"Makefile"
"/doc/generated/"
"log.conf$"
"Doxyfile$"
"Doxyfile_full$"
"VERSION$"
"tools/openvas-adduser$"
"tools/openvas-mkcert$"
"tools/openvas-mkcert-client$"
"tools/openvas-rmuser$"
"tools/openvas-nvt-sync$"
)
include (CPack)
## Variables
if (SYSCONF_INSTALL_DIR)
set (SYSCONFDIR "${SYSCONF_INSTALL_DIR}")
endif (SYSCONF_INSTALL_DIR)
if (NOT SYSCONFDIR)
set (SYSCONFDIR "${CMAKE_INSTALL_PREFIX}/etc")
endif (NOT SYSCONFDIR)
if (NOT EXEC_PREFIX)
set (EXEC_PREFIX "${CMAKE_INSTALL_PREFIX}")
endif (NOT EXEC_PREFIX)
if (NOT BINDIR)
set (BINDIR "${EXEC_PREFIX}/bin")
endif (NOT BINDIR)
if (NOT SBINDIR)
set (SBINDIR "${EXEC_PREFIX}/sbin")
endif (NOT SBINDIR)
if (NOT LIBDIR)
set (LIBDIR "${EXEC_PREFIX}/lib")
endif (NOT LIBDIR)
if (NOT LOCALSTATEDIR)
set (LOCALSTATEDIR "${CMAKE_INSTALL_PREFIX}/var")
endif (NOT LOCALSTATEDIR)
if (NOT DATADIR)
set (DATADIR "${CMAKE_INSTALL_PREFIX}/share")
endif (NOT DATADIR)
#if (NOT SYSCONFDIR)
# set (SYSCONFDIR "${CMAKE_INSTALL_PREFIX}/etc")
#endif (NOT SYSCONFDIR)
set (OPENVAS_DATA_DIR "${DATADIR}/openvas")
set (OPENVAS_STATE_DIR "${LOCALSTATEDIR}/lib/openvas")
set (OPENVAS_LOG_DIR "${LOCALSTATEDIR}/log/openvas")
set (OPENVAS_CACHE_DIR "${LOCALSTATEDIR}/cache/openvas")
set (OPENVAS_PID_DIR "${LOCALSTATEDIR}/run")
set (OPENVAS_SYSCONF_DIR "${SYSCONFDIR}/openvas")
set (OPENVAS_USERS_DIR "${OPENVAS_STATE_DIR}/users")
set (OPENVAS_NVT_DIR "${OPENVAS_STATE_DIR}/plugins")
set (OPENVAS_LIB_INSTALL_DIR "${LIBDIR}")
set (OPENVAS_SCANNER_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/servercert.pem")
set (OPENVAS_SCANNER_KEY "${OPENVAS_STATE_DIR}/private/CA/serverkey.pem")
set (OPENVAS_CLIENT_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/clientcert.pem")
set (OPENVAS_CLIENT_KEY "${OPENVAS_STATE_DIR}/private/CA/clientkey.pem")
set (OPENVAS_CA_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/cacert.pem")
set (OPENVASSD_MESSAGES "${OPENVAS_LOG_DIR}/openvassd.messages")
set (OPENVASSD_DEBUGMSG "${OPENVAS_LOG_DIR}/openvassd.dump")
set (OPENVASSD_CONF "${OPENVAS_SYSCONF_DIR}/openvassd.conf")
set (OPENVASSD_RULES "${OPENVAS_DATA_DIR}/openvassd.rules")
set (NVT_TIMEOUT "320")
message ("-- Install prefix: ${CMAKE_INSTALL_PREFIX}")
## Dependency checks
##
## TODO Also check for headers where needed.
## Improve for workflow: First collect list of missing libs, then print the
## list and throw an error, otherwise long install-cmake-install-cmake cycles
## might occur.
pkg_check_modules (LIBOPENVAS REQUIRED libopenvas>=5.0.0)
pkg_check_modules (GNUTLS REQUIRED gnutls)
pkg_check_modules (GLIB REQUIRED glib-2.0)
message (STATUS "Looking for pcap...")
find_library (PCAP pcap)
message (STATUS "Looking for pcap... ${PCAP}")
if (NOT PCAP)
message (FATAL_ERROR "The pcap library is required.")
endif (NOT PCAP)
message (STATUS "Looking for gpgme...")
find_library (GPGME gpgme)
message (STATUS "Looking for gpgme... ${GPGME}")
if (NOT GPGME)
message (FATAL_ERROR "The gpgme library is required.")
endif (NOT GPGME)
execute_process (COMMAND pkg-config --cflags glib-2.0
OUTPUT_VARIABLE GLIB_CFLAGS
OUTPUT_STRIP_TRAILING_WHITESPACE)
execute_process (COMMAND pkg-config --libs glib-2.0
OUTPUT_VARIABLE GLIB_LDFLAGS
OUTPUT_STRIP_TRAILING_WHITESPACE)
execute_process (COMMAND pkg-config --cflags libopenvas
OUTPUT_VARIABLE OPENVAS_CFLAGS
OUTPUT_STRIP_TRAILING_WHITESPACE)
execute_process (COMMAND pkg-config --libs libopenvas
OUTPUT_VARIABLE OPENVAS_LDFLAGS
OUTPUT_STRIP_TRAILING_WHITESPACE)
## Version
string (REPLACE "
" "" OPENVASSD_VERSION ${CPACK_PACKAGE_VERSION})
# Configure Doxyfile with version number
configure_file (doc/Doxyfile.in doc/Doxyfile @ONLY)
configure_file (doc/Doxyfile_full.in doc/Doxyfile_full @ONLY)
configure_file (doc/openvassd.8.in doc/openvassd.8 @ONLY)
configure_file (VERSION.in VERSION @ONLY)
configure_file (tools/openvas-adduser.in tools/openvas-adduser @ONLY)
configure_file (tools/openvas-rmuser.in tools/openvas-rmuser @ONLY)
configure_file (tools/openvas-mkcert.in tools/openvas-mkcert @ONLY)
configure_file (tools/openvas-mkcert-client.in tools/openvas-mkcert-client @ONLY)
configure_file (tools/openvas-nvt-sync.in tools/openvas-nvt-sync @ONLY)
# TODO: Once Scanner has a proper logging mechanism like Manager.
#configure_file (src/openvassd_log_conf.cmake_in src/openvassd_log.conf)
## Program
set (HARDENING_FLAGS "-Wformat -Wformat-security -O2 -D_FORTIFY_SOURCE=2 -fstack-protector -Wl,-z,relro -Wl,-z,now")
set (CMAKE_C_FLAGS_DEBUG "${CMAKE_C_FLAGS_DEBUG}")
set (CMAKE_C_FLAGS "${CMAKE_C_FLAGS} ${HARDENING_FLAGS} -Wall -Werror -D_BSD_SOURCE -D_ISOC99_SOURCE -D_SVID_SOURCE")
add_subdirectory (src)
## Documentation
add_subdirectory (doc)
## Install
## Install
install (FILES src/openvassd
DESTINATION ${SBINDIR}
PERMISSIONS OWNER_EXECUTE OWNER_READ OWNER_WRITE
GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
# TODO: Once Scanner has a proper logging mechanism like Manager.
#install (FILES openvassd_log.conf
# DESTINATION ${OPENVAS_SYSCONF_DIR})
install (FILES tools/openvas-adduser tools/openvas-rmuser
tools/openvas-mkcert tools/openvas-mkcert-client
tools/greenbone-nvt-sync tools/openvas-nvt-sync
DESTINATION ${SBINDIR}
PERMISSIONS OWNER_EXECUTE OWNER_READ OWNER_WRITE
GROUP_READ GROUP_EXECUTE WORLD_READ WORLD_EXECUTE)
install (FILES doc/openvas-adduser.8 doc/openvas-mkcert.8
doc/openvas-nvt-sync.8 doc/openvas-rmuser.8 doc/openvassd.8
doc/greenbone-nvt-sync.8
DESTINATION ${DATADIR}/man/man8 )
install (DIRECTORY DESTINATION ${OPENVAS_NVT_DIR})
install (DIRECTORY DESTINATION ${OPENVAS_CACHE_DIR})
install (DIRECTORY
DESTINATION ${OPENVAS_SYSCONF_DIR}/gnupg
DIRECTORY_PERMISSIONS OWNER_EXECUTE OWNER_READ OWNER_WRITE)
## Tests
enable_testing ()
## End
License information about openvas-scanner
------------------------------------------
Th effective license of the modules as a whole
is the GNU General Public License Version 2 (GNU GPLv2).
Single files, however, are licensed either
under GNU General Public License Version 2 (GNU GPLv2)
or under "GNU GPLv2 or any later version" (GNU GPLv2+).
GPLv2: See file COPYING.GPLv2
The following overview was collected 20100812 based
on the header of the respective files (last updated
20110114):
src/attack.[c|h]: GPLv2
src/auth.[c|h]: GPLv2
src/comm.[c|h]: GPLv2
src/hosts.[c|h]: GPLv2
src/locks.[c|h]: GPLv2
src/log.[c|h]: GPLv2
src/nasl_plugins.c: GPLv2
src/ntp_11.[c|h]: GPLv2
src/openvassd.c: GPLv2
src/otp_1_0.[c|h]: GPLv2+
src/oval_plugins.c: GPLv2+
src/parser.[c|h]: GPLv2
src/piic.[c|h]: GPLv2
src/pluginload.[c|h]: GPLv2
src/pluginscheduler.[c|h]: GPLv2
src/plugs_hash.[c|h]: GPLv2
src/plugs_req.[c|h]: GPLv2
src/preferences.[c|h]: GPLv2
src/processes.[c|h]: GPLv2
src/rules.[c|h]: GPLv2
src/save_kb.[c|h]: GPLv2
src/sighand.[c|h]: GPLv2
src/users.[c|h]: GPLv2
src/utils.[c|h]: GPLv2
tools/greenbone-nvt-sync: GPLv2
tools/openvas-adduser.in: GPLv2
tools/openvas-rmuser.in: GPLv2
tools/openvas-mkcert-client.in: GPLv2
tools/openvas-mkcert.in: GPLv2
tools/openvas-nvt-sync.in: GPLv2
This diff is collapsed.
This diff is collapsed.
INSTALLATION INSTRUCTIONS FOR OPENVAS-SCANNER
=============================================
Please note: The reference system used by most of the developers is Debian
GNU/Linux 'Lenny' 5.0. The build might fail on any other systems. Also
it is necessary to install dependent development packages.
Compiling openvas-scanner
-------------------------
Prerequisites:
* cmake
* glib-2.0
* gnutls
* openvas-libraries (5.0+beta2 or later)
* pkg-config
Prerequisites for building documentation:
* Doxygen
* xmltoman (optional, for building man page)
* sqlfairy (optional, for producing database diagram)
If you have installed required libraries to a non-standard location, remember to
set the PKG_CONFIG_PATH environment variable to the location of you pkg-config
files before configuring:
$ export PKG_CONFIG_PATH=$PKG_CONFIG_PATH:/your/location/lib/pkgconfig
Then configure the build with
$ cmake -DCMAKE_INSTALL_PREFIX=/path/to/your/installation .
or (if you want to use the default installation path /usr/local)
$ cmake .
This only needs to be done once. Note: It is assumed that the other
OpenVAS components are installed to the same path. If not, you need to set
some paths separately, see below for details.
Thereafter, the following commands are useful.
$ make # build the scanner
$ make doc # build the documentation
$ make doc-full # build more developer-oriented documentation
$ make install # install the build
$ make rebuild_cache # rebuild the make system cache
$ make install
Please note that you may have to execute this command as root, especially if you
have specified a prefix for which your user does not have full permissions.
Setting up openvas-scanner
--------------------------
Setting up an openvas-scanner requires the following steps:
1) The scanner service communicate through an SSL connection.
In order to establish this connection, the scanner needs to have
an SSL certificate it can present to the client to prove its identity. You
can interactively create this certificate by using the following command:
$ openvas-mkcert
This command will guide you through the certificate creation and place the
certificates in the correct locations on your system.
2) In order to run vulnerability scans, you will need a collection of Network
Vulnerability Tests (NVTs) that can be run by openvas-scanner. Initially,
your NVT collection will be empty. It is recommended that you synchronize
with an NVT feed service before starting openvas-scanner for the first time.
Your installation is preconfigured to synchronize with the OpenVAS NVT Feed.
Simply execute the following command to receive thousands of NVTs from this
feed service:
$ openvas-nvt-sync
Please note that you will need at least one of the following tools for a
successful synchronization:
* rsync
* wget
* curl
NVT feeds are usually updated a few times per week. Be sure to update your
NVT collection regularly to detect the latest threats.
Please visit the OpenVAS website for more information on available NVT feeds
and instructions for integrating feeds into your scanner installation.
3) You can launch openvas-scanner using the following command:
$ openvassd
Be aware that the first launch of openvas-scanner after the initial feed
synchronization or after large feed updates will take longer than usual since
the internal scanner cache has to be updated. Subsequent launches will be
much quicker.
Please note that although you can start openvassd as a user without elevated
privileges, it is recommended that you start openvassd as root since a number
of Network Vulnerability Tests (NVTs) require root privileges to perform
certain operations like packet forgery. If you run openvassd as a user
without permission to perform these operations, your scan results are very
likely to be incomplete.
4) Once the scanner has started, openvas-manager can act as a client and control
the scanner. The actual user interfaces (for example GSA, GSD or CLI-OMP)
will only interact with the manager, not the scanner.
It is still possible to use the latest version of the old OpenVAS-Client as
direct client application for the scanner but this will circumvent the whole
vulnerability management storage and processes.
5) [conditional]: If you do plan to use OpenVAS-Client as direct client and do
not plan to use OpenVAS Manager, then you need to create at least one user
for the openvas-scanner to be able to login. This can be done via the command:
$ openvas-adduser
The command will guide you through the user creation and allow you to specify
a name and authentication method for the user and to define rules restricting
the usage of the scanner by this user.
If you plan to use the OpenVAS Manager, you will be guided through
creation of user accounts by the INSTALL file of OpenVAS Manager.
If you encounter problems, the files /var/log/openvas/openvassd.messages and
/var/log/openvas/openvassd.dump may contain useful information. (The exact
location of these files may differ depending on your distribution and
installation method.) Please have these files ready when contacting the OpenVAS
developers through the OpenVAS mailing list or the online chat or submitting bug
reports at http://bugs.openvas.org/ as they may help to pinpoint the source of
your issue.
openvas-scanner
===============
This is the scanner module for the Open Vulnerability Assessment System
(OpenVAS).
For more information, please refer to the OpenVAS website available at
http://www.openvas.org/.
Please see the file COPYING for the license information.
Please refer to the instructions provided in the file INSTALL if you want to
install and configure openvas-scanner. If you are not familiar or comfortable
with the procedure described there, we recommend that you use a binary package
provided by your distribution. Information regarding available binary packages
is available from the OpenVAS website.
Note that you will need the openvas-libraries modules to compile
openvas-scanner. Further information about these modules is available
from the OpenVAS website as well.
If you have any question or suggestions, please feel free to use the mailing
list and the IRC chat to contact the OpenVAS developers.
Please use the OpenVAS bug tracker located at http://bugs.openvas.org/ to report
bugs.
@CPACK_PACKAGE_VERSION@
\ No newline at end of file
# OpenVAS
# $Id$
# Description: CMakefile for the OpenVAS Scanner documentation
#
# Authors:
# Matthew Mundell <matthew.mundell@greenbone.net>
# Michael Wiegand <michael.wiegand@greenbone.net>
#
# Copyright:
# Copyright (C) 2011 Greenbone Networks GmbH
#
# This library is free software; you can redistribute it and/or
# modify it under the terms of the GNU Library General Public
# License as published by the Free Software Foundation; either
# version 2 of the License, or (at your option) any later version.
#
# This library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# Library General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
## build
set_directory_properties (PROPERTIES CLEAN_NO_CUSTOM true)
set_directory_properties (PROPERTIES ADDITIONAL_MAKE_CLEAN_FILES ".built-html;.built-html_full")
include (FindDoxygen)
if (NOT DOXYGEN_EXECUTABLE)
message (STATUS "WARNING: Doxygen is required to build the HTML docs.")
else (NOT DOXYGEN_EXECUTABLE)
set (DOC_FILES
../src/attack.c ../src/auth.c ../src/comm.c ../src/hosts.c
../src/locks.c ../src/log.c ../src/nasl_plugins.c ../src/ntp_11.c
../src/openvassd.c ../src/otp_1_0.c ../src/oval_plugins.c ../src/parser.c
../src/piic.c ../src/pluginlaunch.c ../src/pluginload.c
../src/pluginscheduler.c ../src/plugs_hash.c ../src/plugs_req.c
../src/preferences.c ../src/processes.c ../src/rules.c ../src/save_kb.c
../src/sighand.c ../src/users.c ../src/utils.c
../README ../INSTALL)
add_custom_target (doc COMMENT "Building documentation..."
DEPENDS Doxyfile .built-html)
add_custom_target (doc-full COMMENT "Building documentation..."
DEPENDS Doxyfile_full .built-html_full)
endif (NOT DOXYGEN_EXECUTABLE)
add_custom_command (OUTPUT .built-html
COMMAND sh
ARGS -c \"cd .. && ${DOXYGEN_EXECUTABLE} doc/Doxyfile && touch doc/.built-html\;\"
DEPENDS Doxyfile ${DOC_FILES})
add_custom_command (OUTPUT .built-html_full
COMMAND sh
ARGS -c \"cd .. && ${DOXYGEN_EXECUTABLE} doc/Doxyfile_full && touch doc/.built-html_full\;\"
DEPENDS Doxyfile_full ${DOC_FILES})
This diff is collapsed.
This diff is collapsed.
.\" Hey, EMACS: -*- nroff -*-
.TH GREENBONE-NVT-SYNC 8 "January 2011" "The OpenVAS Project" "User Manuals"
.SH NAME
greenbone-nvt-sync \- updates the OpenVAS security checks from Greenbone Security Feed
.SH SYNOPSIS
.B greenbone-nvt-sync
.SH DESCRIPTION
The
.B OpenVAS Scanner
performs several security checks. These are called Network Vulnerability Tests
(NVTs) and are mostly implemented in the programming language NASL. Some NVTs are
wrappers for external tools.
As new security holes are published every day, new NVTs appear in the
Greenbone Security Feed. This feed is commercial and requires a respective subscription key.
The OpenVAS project offers a free Feed which can be issued via openvas-nvt-sync(8).
.br
The script
.B greenbone-nvt-sync
will fetch all new and updated security checks and install them at the proper
location. Once this is done it will try to restart the openvas-scanner(8)
so that the new NVTs are loaded and considered for new security scans. If your installation
does not allow automatic restart, you need to restart the scanner manually.
.SH SEE ALSO
For more information see:
.BR openvassd(8),
.BR openvas-nvt-feed(8)
.br
.SH AUTHOR
This manual page was written by
Jan-Oliver Wagner <jan-oliver.wagner@greenbone.net>.
.PP
The
.B greenbone-nvt-sync
script was written by Greenbone Networks GmbH.
$Id: kb_entries.txt 1246 2008-08-29 14:56:30Z jan $
ATTENTION: THIS LIST OF ENTRIES SEEMS TO NOT OCCUR (SET) in OPENVAS NVTS!
This means that these entries are probably set by proprietary scripts
or are hopelessly outdated.
Name Value Meaning
-----------------------------------------------------------------------------
cfingerd/version <version> Version of the remote cfingerd
finger/.@host 1 Fingering "." gives away the list of users
finger/0@host 1 Fingering "0" gives away the list of users
finger/active 1 The finger service works properly
finger/search.**@host 1 Fingering ".**" gives the list of users
finger/user@host1@host2 1 Finger can be used as a relay
ftp/anonymous 1 Anonymous FTP is enabled
ftp/ncftpd 1 The remote server is NcFTPd
ftp/no_mkdir 1 The remote server prevents the use of MKD
ftp/overflow 1 The remote server can be overflown
ftp/overflow_method <cmd> Command vulnerable to an overflow
ftp/pftp_login_problem 1 The remote pftp server allows " "/" " to log in
ftp/root_via_cwd 1 Wu-FTPd allows the becoming of root via CWD
ftp/root_via_site_exec 1 Wu-FTPd allows the becoming of root using SITE EXEC
ftp/wftp_login_problem 1 WFTP allows any login
ftp/writeable_dir <dir> Name of a user-writeable dir
ftp/wu_ftpd_overflow 1 Wu-FTPd vulnerable to an overflow
http/10 1 HTTP/1.0 is spoken here
http/11 1 HTTP/1.1 is spoken here
Proxy/usage 1 The remote proxy can be used
RPC/NIS/domain domainname NIS domain
rpc/bootparamd 1 Bootparamd is present
rpc/portmap 1 Portmap is reachable
rsh/active 1 rsh is working properly
SMB/Users/Enumerated 1 The SMB users have been enumerated (through sid2user or via SNMP)
SMB/Win2K/ServicePack <ServicePack> ServicePack applied on the remote W2K server
SMB/WinNT4/ServicePack <ServicePack> ServicePack applied on the remote WNT4
SMB/WindowsVersion <Version> Version of windows the remote host is running
SMB/browse <BrowseList> Browse list of the remote host
SMB/domain_sid <SID> SID of the host's domain
SMB/login <login> Login to use for the tests
SMB/password <password> Password that goes with the login
SMB/registry_access 1 We can access to the remote registry
SMB/registry_full_access 1 We can access any value in the remote registry
SMB/shares <shares> List of shares exported by the remote server
SMB/svcs <svcs> Services run by the remote server
SMB/Users/<num> <username> Name of SMB users
SMB/ValidUsers/<num>/Login <username> Name of a (working) SMB user
SMB/ValidUsers/<num>/Password <passwd> Password of a valid SMB user
Sawmill/method <string> Is Sawmill running as a CGI or in standalone mode ?
Sawmill/readline <string> Sawmill can read the first line of any remote file
Services/nntp <port> Port of the remote NNTP server
Services/swat <port> Port of the remore SWAT server
Services/vqServer-admin <port> Port of the remote vqServer admin
Services/www <port> Port of the remote web server
Services/realserver <port> Port of the remote real server
Services/smtp <port> Port of the remote SMTP server
Services/ftp <port> Port of the remote FTP server
Services/ssh <port> Port of the remote SSH server
Services/http_proxy <port> Port of the remote HTTP proxy
Services/pop1 <port> Port of the remote POP-1 server
Services/pop2 <port> Port of the remote POP-2 server
Services/pop3 <port> Port of the remote POP-3 server
Services/imap <port> Port of the remote IMAP server
Services/auth <port> Port of the remote identd/auth server
Services/wild_shell <port> A shell is running on this port
Services/telnet <port> Port of the remote telnet server
Services/netbus <port> Port of the remote netbus server
Services/linuxconf <port> Port of the remote linuxconf server
Services/napster <port> Port of the remote napster client
SMTP/vrfy 1 The remote SMTP server accepts VRFY requests
SMTP/expn 1 The remote SMTP server acceps EXPN requests
SMTP/spam 1 The remote SMTP server is an open relay
www/<port>/content/cgi/<num> <cginame> CGI of the remote server
#
# XXX to be completed
#
DESCRIPTION OF THE NBE FILE FORMAT
The .nbe file format was designed to facilitate the export of openvassd reports
to other tools.
The format is the following for each line :
<category>|<subnet>|<host>|[Info]
Where :
<category> is either "timestamps" or "results".
If <category> is timestamps, then the format of [info] is :
<action>|<time>|
with
<action> = scan_start, scan_end, host_start or host_end
if action is scan_{start,end} then the fields subnet and host are empty.
If <category> is "results", then [info] is plain old .nsr, that is :
<port>|<plugin_id>|<category>|<report>
(described in the file nsr_file_format.txt)
With <port> being the port in plain text (ie: "tcpmux (1/tcp)"),
<plugin_id> is the ID of the plugin which generated an alert, <category>
is one of {Security Hole, Security Warning, Security Note} and <report>
is the report, with return carriages and newlines escaped as '\r' and '\n'
DESCRIPTION OF THE NSR FILE FORMAT
$Id: nsr_file_format.txt 5092 2009-09-21 12:15:09Z felix $
The .nsr file format was designed to facilitate the export of openvassd reports
to other tools.
The format is the following for each line :
'hostname|port' (1)
or
'hostname|port|script_id|type|data' (2)