NVT Timed Out

syafs · February 27, 2020, 8:47am

Hi,

Im not sure if this is the correct category to post this question, here goes.

Im scanning a target behind a firewall using a third party docker container. The scan completed scanning, and in the scan report, in tab Error Messages, it display the NVT timed out after XXX seconds errors.

My question:
1- Correct me if Im wrong, from my understanding this error happened due to:

scanner_plugins_timeout : Maximum lifetime (in seconds) for all NVTs from the port scanners family. If an NVT runs longer, the plug-in is terminated.

Does that mean the NVT did not get any response from the target within the timeout duration, causing the timeout?

2- Is there any way to know which NVTs that are terminated from the timeout, as the information is not available from the same tab.

GVM versions

gsa: v9.0.0
gvm: v9.0.0
openvas-scanner: v2.0.0
gvm-libs: v11.0.0

Environment

Operating system: MacOS
Installation method / source: https://github.com/Secure-Compliance-Solutions-LLC/GVM-Docker

jbaptiste · April 2, 2020, 3:59am

I have the same issue with the VM appliance and just doing one host scan, it seems to get very slow around 60% and on the logs I start to see this message a lot: “NVT timed out after 320 seconds.”. I’m using the documentation recommended configuration for virtualbox, 2 cpu’s and 4GB of ram. What can I do to get things going quicker ??

Thanks.

bricks · April 4, 2020, 1:33pm

This is fixed with https://github.com/greenbone/ospd/pull/234 and https://github.com/greenbone/ospd-openvas/pull/222

syafs · April 2, 2020, 6:53am

Hi Bricks,

Could you help to point where I can see the updated PR from GSA?

As you can see, the attached screenshot still not displaying which NVTs that are terminated.

bricks · April 2, 2020, 6:56am

You need to build the scanner component of GVM 11 (ospd-openvas) by yourself or you have to wait for the next release of our Greenbone Community Edition VM.

syafs · April 2, 2020, 8:00am

The dockerfile that I currently use is using the latest ospd version:

open_scanner_protocol_daemon=“v2.0.0”
ospd_openvas=“v1.0.0”

I have re-run the scan using a newly started container, but the error message still not showing timeout NVT details.
Do you have suggestion on what i should do to be able to view it?

bricks · April 2, 2020, 8:16am

yes and no. the release branches contain a lot of fixes and we aren’t creating point releases at the moment. Therefore the docker container should not use the releases and switch to using the release branches instead which will contain the mentioned fixes.

jbaptiste · April 2, 2020, 11:39pm

Excellent, I will try this out and report back.

jbaptiste · April 4, 2020, 2:51am

Hi,

I forked and updated the repo that the OP is using securecompliance/gvm to do a git checkout of the branches were the PR’s mentioned before were merged but I still get around 100 NVT timed out error messages for a single host scan. I’m I missing something ?

jbaptiste · April 4, 2020, 3:29am

Ignore this answer for now, it seems I had a mixup of versions on the server I was testing, I will test again and report back…

cfi · April 5, 2020, 7:32am

A post was split to a new topic: Startup hangs on “Starting Open Scanner Protocol daemon for OpenVAS…”