Comments (3)
Finally after reinstallation from scratch it seems it works. Maybe something was wrong with sources during time of my installation, as it didn't provide any error messages when installed.
Anyway, I believe we can simply close it.
from libellux-up-and-running.
Hello @TatusGepetto so I just installed a fresh source build from my guide. Unfortuntely I do not get the same log message as you. I get the results for both "SSH Server type and version" with other port and protocol scans when I ran vulnerability check against a test host intrusion detection server (ossec) for example:
2021 Dec 22 04:13:40 localhost->/var/log/secure
Rule: 5701 (level 8) -> 'Possible attack on the ssh server (or version gathering).'
Dec 22 04:13:39 localhost sshd[13923]: error: Protocol major versions differ: 2 vs. 1
If you want to probe your external host make sure that your target host default firewall doesn't block the port scanner - as explained here: https://explainshell.com/explain?cmd=nmap+-PE
I hope you'll resolve it and that I've been to some help at least.
from libellux-up-and-running.
Hello @libellux , thank you very much for your answer. I made another approach and change recognition option to "Consider alive", as I'm fully sure that such IPs and ports are responsive:
But it didn't change too much, Of course I don't see this problem with nmap execution, but I can see only LOG responses, no other issues(which would be fine IF my system is fully bulletproof):
But if I will compare it to one of the last scans from operational 20.08 system, I was able to get there:
I know that for this example host I still should be able to get LOW and MEDIUM alerts about:
As I didn't fix it, but it seems that newer version of system doesn't provide such response. So I'm wondering if installation method is somehow corrupted or something else is wrong.
I added additionally such options to sudoers file:
# allow users of the gvm group run nmap and arping
%gvm ALL = NOPASSWD: /usr/bin/nmap
%gvm ALL = NOPASSWD: /usr/sbin/arping
But it didn't change anything.
So I'm wondering if you have any advices, cause it seems that my system is somehow partially OK.
from libellux-up-and-running.
Related Issues (20)
- ClamAV 1.0.5.0
- Logtail + Better Uptime w/ OSSEC alerts.json
- Diagrams
- PSAD Intrustion Detection Rev 3
- M/Monit Rev 1
- WireGuard Rev 3
- GVM Rev. 9 HOT 2
- Problem to start gvmd in script ubuntu_22.4.0.sh HOT 3
- Add GVM 22.4.0 support for Ubuntu 20.04
- Certain Files no longer available HOT 3
- [OpenVAS] Empty directory during installation HOT 1
- [BUG] ubuntu-22_04_GVM-22.4.0.sh contains errors HOT 3
- Mastter/Slave setup HOT 2
- Update GVM 22.4.x with latest releases for Ubuntu 22.04
- WireShark first revision
- ClamAV Rev 5 HOT 2
- Improve content and descriptions HOT 1
- Version 2.1.0 HOT 1
- Switch from VuePress to VitePress HOT 1
- Version 3.0.0 HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from libellux-up-and-running.