Cant update CVE feed on fresh kali 2020

Hey i am trying to use the greenbone scanner on a fresh kali 2020 install.
I have installed GVM i have it up and running. I has found 60000~ NVTs but 0 CVEs

I tried

sudo gvm-feed-update

but it breaks when it tries to get teh CVEs

kali@kali:~$ sudo gvm-feed-update 
[>] Updating OpenVAS feeds
[*] Updating: NVT
[>] Uploading plugins in Redis
[*] Updating: Cert Data
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/

All transactions are logged.

If you have any questions, please use the Greenbone community portal. 
See https://community.greenbone.net for details.

By using this service you agree to our terms and conditions.

Only one sync per time, otherwise the source ip will be temporarily blocked.

receiving incremental file list
timestamp
         13 100%   12.70kB/s    0:00:00 (xfr#1, to-chk=0/1)

sent 43 bytes  received 113 bytes  104.00 bytes/sec
total size is 13  speedup is 0.08
[*] Updating: Scap Data
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/

All transactions are logged.

If you have any questions, please use the Greenbone community portal. 
See https://community.greenbone.net for details.

By using this service you agree to our terms and conditions.

Only one sync per time, otherwise the source ip will be temporarily blocked.

receiving incremental file list
timestamp
         13 100%   12.70kB/s    0:00:00 (xfr#1, to-chk=0/1)

sent 43 bytes  received 114 bytes  314.00 bytes/sec
total size is 13  speedup is 0.08
Greenbone community feed server - http://feed.community.greenbone.net/
This service is hosted by Greenbone Networks - http://www.greenbone.net/

All transactions are logged.

If you have any questions, please use the Greenbone community portal. 
See https://community.greenbone.net for details.

By using this service you agree to our terms and conditions.

Only one sync per time, otherwise the source ip will be temporarily blocked.

receiving incremental file list
./
nvdcve-2.0-2007.xml
          0   0%    0.00kB/s    0:00:00  
rsync: [receiver] read error: Connection reset by peer (104)
rsync error: error in socket IO (code 10) at io.c(791) [receiver=3.2.2]
rsync: connection unexpectedly closed (1478 bytes received so far) [generator]
rsync error: error in rsync protocol data stream (code 12) at io.c(235) [generator=3.2.2]

Tried running

sudo gvm-check-setup

it gives me the error on step 4 “Scap data are missing”
Then i run sudo greenbone-scapdata-sync and i get permisssion denied error, even though i ran it as root =/

GVM versions

gsa: (‘gsad --version’)
9.0.1
gvm: (‘gvmd --version’)
9.0.1
openvas-scanner: (‘openvassd --version’)

gvm-libs:

Environment

**Operating system:Kali 2020
Kernel: (‘uname -a’)
Linux kali 5.7.0-kali1-amd64 #1 SMP Debian 5.7.6-1kali2 (2020-07-01) x86_64 GNU/Linux

Installation method / source:

It look like the network is timeout,and you can try to run sudo greenbone-scapdata-sync again

Closing as a duplicate of Sync fails on specific file (same errors but from a different sync script, nevertheless the same problem).

Please follow up there if you have further questions around this topic.

And again DON’T RUN THE SYNC SCRIPTS AS ROOT. Just use dedicated users for the components and a group to handle the permissions. Only the openvas scanner application needs root permissions for some actions. Running the other tools especially the sync scripts as root will mix up the permissions and break the whole setup.

3 Likes