I’ve just installed OpenVAS/gsad on an ubuntu 18.04.1 server. I’m finding if I scan a host five times with the same task and it finds the same issue each time, my results page now shows five identical issues. Run the scan again, now I have six issues. But it’s the same issue. See attached screenshot – this host has one medium, one low, and about 20 log issues, but it shows as 5, 5, and 109.
A scan/report always shows the current status of the target(s). If the same task with the same scan config is run at the same target(s) you always will get the same results. If you would like to see the changes between two scans of the same task please take a look at diff reports.
If I’m understanding what you’re saying, when I want to see the latest results of a scan, I look at the scan report, not the scan results for the host. But what if I have multiple different tasks running against the same host? How do I get the de-duplicated summary for the host? If I choose “show scan results for this host” I see the duplicate entries.
Also, when I go to the scans dashboard, the chart show duplicates. See attached from the scan dashboard, which I think should show the overall status of my environment.
It shows 5 medium entries, but there is actually only one finding, which has shown up five times because the host has been scanned five times. If you drill down in the scan dashboard, you can see it’s a duplicate.
Is this really how it’s supposed to work? Or is something wrong with my setup?
