How customize/change plugins in Greenbone OS 4.2.20

nasl
gce

#1

Hi there,

For local security checks, I found some problem in gather-package-list.nasl that the script can’t find the right version of my OS. So, I’ve hard coded the release and patchlevel variables in plugin.

First, After updating my code is removed and I have to change that again. Is there a way to fix my changes even after updating?

Second, why after changing the plugin I always see these messages in openvassd.messages file :

[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.122873 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.831650 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.122874 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.870808 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.850157 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.874322 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.881239 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.703175 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:11 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.842081 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.867909 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.843240 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.123048 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.892655 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.891496 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.851316 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.704334 depends on gather-package-list.nasl which could not be found
[Wed Jan 23 11:14:12 2019][1271] scheduler: 1.3.6.1.4.1.25623.1.0.851317 depends on gather-package-list.nasl which could not be found

Third, After running greenbone-* scripts in order to update all data, I can’t see the CVE which are reported in 2019! the latest CVE that I can see in web-ui is CVE-2018-9999 !!! why??


#2

While you might be able to modify existing scripts all Greenbone OS based installations (GCE, GSM) have signatures enabled to verify the consistency and validity of the executed plugins. Once modifications are found (e.g. like you have done in gather-package-list.nasl) those scripts won’t get executed anymore.

To avoid this problem without disabling the safety of the signature check you could create a new topic in https://community.greenbone.net/c/vulnerability-tests and suggest the changes you have done into the gather-package-list.nasl. This changes could be applied directly into the feed and distributed within it so you don’t need to apply them after each feed update.