Here I can be “more clear” where it’s possible to cut’n paste, and where every line are non “batchable”
Yes, I played the dumb, as I like to ask some friend to do that when I create a documentation, to be sure that anyone can use it without having any issue.
I’ll try to make some comments with more dependencies for debian stretch.
Was it possible to add those with apt before as dependencies in stretch?
Yes, a simple apt install git clang-format apt-transport-https libical-dev
solve the problem.
Yes, that would be great.
I tried to take the config directly from the docs this time.
It adds an extra config to redis-server. And to start that service: systemctl start redis-server@openvas.service
I’m aware of the @ symbol that makes you start a specific instance of a service, but there it was not working for me by simply printing: Failed to start redis-server@openvas.service: Unit redis-server@openvas.service not found.
As I told you I have no real knowledge on redis… So to test a bit the configuration file, I simply move redis-openvas.conf as redis.conf, and there I had the same that I got with your tutorial on GVM10.
When I start the service i got an error, which come out this way with systemctl status redis-server
:
systemd[1]: redis-server.service: Unit entered failed state.
systemd[1]: redis-server.service: Failed with result 'resources'.
systemd[1]: redis-server.service: Service hold-off time over, scheduling restart.
systemd[1]: Stopped Advanced key-value store.
systemd[1]: redis-server.service: Start request repeated too quickly.
systemd[1]: Failed to start Advanced key-value store.
systemd[1]: redis-server.service: Unit entered failed state.
systemd[1]: redis-server.service: Failed with result 'resources'.
So I checked on the interne and found this on stackoverflow: >For me the solution was to give access to the config file (read) and the log file (read-write) to user redis.
chown -R redis:redis /var/log/redis
chmod -R u+rwX,g+rwX,u+rx /var/log/redis
chmod +r /etc/redis/redis.conf
Seems like this guy is right, because after that it’s working well. Still, I cannot run a specific instance, I have to look it up more about redis and how to run a specific instance.
This should have been added with?
On a fresh debian 9, you don’t have any /etc/environment file, so the sed don’t do anything. Seems like /etc/environment is still working tho, but we usually use /etc/profile for the path.
Those are somewhat unfinished in the guide…
They work, but lots of manual starting and such
You probably should come up with some services, but I don’t know how you can do that with ospd.
By the way, if you try service, on my previous version with psql, I had to specify in the service that gvmd should start after psql. (It was working without this on sqlite)
All ideas are welcome
I have a concern about docker version of a master/slave setup. if you deploy them at the same time or in a reduced time interval, one of them will be temporary ban by greenbone and therefore will not be able to update its NVTs.
So I thought about a rsync between the master and all the slave, I’m currently testing the solution on my setup, I’ll give you a feedback when it’s done.
Another area of improvement that I’ll work when I have more time is the NVT, as you may know there is two different feeds from Greenbone, GCF and GSF.
Unfortunately, we cannot purchase the GSF without having an appliance of greenbone with their OS. So to fix this, I found out this and I’d like to test it, we’ll see if it’s still working.
My thoughts are that when I documenting the process for myself, I can rather give something back to the community. In the way I can
That’s the spirit, I hope I can give you more feedback about the improvement I planned to have soon ! Keep it up !
Regards,