Куча ошибок:
sudo gvm-setup
[>] Starting PostgreSQL service
[>] Creating GVM's certificate files
[>] Creating PostgreSQL database
[i] User _gvm already exists in PostgreSQL
[i] Database gvmd already exists in PostgreSQL
[i] Role DBA already exists in PostgreSQL
[*] Applying permissions
ЗАМЕЧАНИЕ: роль "_gvm" уже назначена членом роли "dba" ролью "postgres"
GRANT ROLE
[i] Extension uuid-ossp already exists for gvmd database
[i] Extension pgcrypto already exists for gvmd database
[i] Remove old parts from DB for new pg-gvm extension
ЗАМЕЧАНИЕ: представление "result_new_severities_dynamic" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_new_severities" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_new_severities_static" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_overrides" не существует, пропускается
ЗАМЕЧАНИЕ: функция hosts_contains() не существует, пропускается
ЗАМЕЧАНИЕ: функция max_hosts() не существует, пропускается
ЗАМЕЧАНИЕ: функция regexp() не существует, пропускается
[*] Creating extension pg-gvm
ОШИБКА: расширение "pg-gvm" отсутствует
ПОДРОБНОСТИ: Не удалось открыть управляющий файл расширения "/usr/share/postgresql/16/extension/pg-gvm.control": Нет такого файла или каталога.
ПОДСКАЗКА: Сначала расширение нужно установить в системе, где работает PostgreSQL.
[>] Migrating database
md manage-Message: 15:50:25.829: db_extension_available: Extension 'pg-gvm' is not available.
(gvmd:19504): md manage-WARNING **: 15:50:25.829: check_db_extensions: A required extension is not available.
(gvmd:19504): md manage-WARNING **: 15:50:25.829: init_manage_create_functions: failed to create functions
[>] Checking for GVM admin user
md main-Message: 12:50:25.851: Greenbone Vulnerability Manager version 23.1.0 (DB revision 255)
(gvmd:19509): md manage-WARNING **: 12:50:25.851: Failed to open lock file '/var/lib/openvas/gvm-checking': Permission denied
(gvmd:19509): md main-CRITICAL **: 12:50:25.851: gvmd: Error trying to get checking lock
[*] Creating user admin for gvm
md main-Message: 12:50:25.872: Greenbone Vulnerability Manager version 23.1.0 (DB revision 255)
(gvmd:19511): md manage-WARNING **: 12:50:25.872: Failed to open lock file '/var/lib/openvas/gvm-checking': Permission denied
(gvmd:19511): md main-CRITICAL **: 12:50:25.872: gvmd: Error trying to get checking lock
[*] Please note the generated admin password
[*]
[*] Configure Feed Import Owner
ОШИБКА: отношение "settings" не существует
СТРОКА 1: SELECT value FROM settings WHERE uuid = '78eceaec-3385-11ea-...
^
[*] Define Feed Import Owner
md main-Message: 12:50:25.938: Greenbone Vulnerability Manager version 23.1.0 (DB revision 255)
(gvmd:19518): md manage-WARNING **: 12:50:25.938: Failed to open lock file '/var/lib/openvas/gvm-checking': Permission denied
(gvmd:19518): md main-CRITICAL **: 12:50:25.938: gvmd: Error trying to get checking lock
(gvmd:19520): md main-CRITICAL **: 15:50:25.959: gvmd: g_option_context_parse: Missing argument for --value
[*] Update GVM feeds
Running as root. Switching to user '_gvm' and group '_gvm'.
Trying to acquire lock on /var/lib/openvas/feed-update.lock
Acquired lock on /var/lib/openvas/feed-update.lock
⠇ Downloading Notus files from
rsync://feed.community.greenbone.net/community/vul... to /var/lib/notus
⠙ Downloading NASL files from
rsync://feed.community.greenbone.net/community/vul...
to /var/lib/openvas/plugins
Releasing lock on /var/lib/openvas/feed-update.lock
Trying to acquire lock on /var/lib/gvm/feed-update.lock
Acquired lock on /var/lib/gvm/feed-update.lock
⠏ Downloading SCAP data from
rsync://feed.community.greenbone.net/community/vul... to
/var/lib/gvm/scap-data
⠏ Downloading CERT-Bund data from
rsync://feed.community.greenbone.net/community/vul...
to /var/lib/gvm/cert-data
⠏ Downloading gvmd data from
rsync://feed.community.greenbone.net/community/dat... to
/var/lib/gvm/data-objects/gvmd/22.04
Releasing lock on /var/lib/gvm/feed-update.lock
[*] Checking Default scanner
md main-Message: 12:50:37.613: Greenbone Vulnerability Manager version 23.1.0 (DB revision 255)
(gvmd:19645): md manage-WARNING **: 12:50:37.613: Failed to open lock file '/var/lib/openvas/gvm-checking': Permission denied
(gvmd:19645): md main-CRITICAL **: 12:50:37.613: gvmd: Error trying to get checking lock
[*] Modifying Default Scanner
md main-Message: 12:50:37.636: Greenbone Vulnerability Manager version 23.1.0 (DB revision 255)
(gvmd:19647): md manage-WARNING **: 12:50:37.636: Failed to open lock file '/var/lib/openvas/gvm-checking': Permission denied
(gvmd:19647): md main-CRITICAL **: 12:50:37.636: gvmd: Error trying to get checking lock
[+] Done
[i] Admin user already exists for GVM
[i] If you have forgotten it, you can change it. See gvmd manpage for more information
[>] You can now run gvm-check-setup to make sure everything is correctly configured
Результаты запуске gvm-check-setup:
sudo gvm-check-setup
gvm-check-setup 23.11.0
Test completeness and readiness of GVM-23.11.0
Step 1: Checking OpenVAS (Scanner)...
OK: OpenVAS Scanner is present in version 22.7.7.
OK: Notus Scanner is present in version 22.6.2.
OK: Server CA Certificate is present as /var/lib/gvm/CA/servercert.pem.
Checking permissions of /var/lib/openvas/gnupg/*
OK: _gvm owns all files in /var/lib/openvas/gnupg
OK: redis-server is present.
OK: scanner (db_address setting) is configured properly using the redis-server socket: /var/run/redis-openvas/redis-server.sock
OK: the mqtt_server_uri is defined in /etc/openvas/openvas.conf
OK: _gvm owns all files in /var/lib/openvas/plugins
OK: NVT collection in /var/lib/openvas/plugins contains 87819 NVTs.
OK: The notus directory /var/lib/notus/products contains 453 NVTs.
Checking that the obsolete redis database has been removed
OK: No old Redis DB
OK: ospd-openvas service is active.
OK: ospd-OpenVAS is present in version 22.6.2.
Step 2: Checking GVMD Manager ...
OK: GVM Manager (gvmd) is present in version 23.1.0.
Step 3: Checking Certificates ...
OK: GVM client certificate is valid and present as /var/lib/gvm/CA/clientcert.pem.
OK: Your GVM certificate infrastructure passed validation.
Step 4: Checking data ...
OK: SCAP data found in /var/lib/gvm/scap-data.
OK: CERT data found in /var/lib/gvm/cert-data.
Step 5: Checking Postgresql DB and user ...
OK: Postgresql version and default port are OK.
gvmd | _gvm | UTF8 | libc | ru_RU.UTF-8 | ru_RU.UTF-8 | | |
ERROR: The new extension pgcrypto does not exist for gvmd database
FIX: Run 'sudo runuser -u postgres -- /usr/share/gvm/create-postgresql-database'
ERROR: Your GVM-23.11.0 installation is not yet complete!
Please follow the instructions marked with FIX above and run this
script again.
Результаты при запуске "sudo runuser -u postgres -- /usr/share/gvm/create-postgresql-database" из строчки FIX:
sudo runuser -u postgres -- /usr/share/gvm/create-postgresql-database
[i] User _gvm already exists in PostgreSQL
[i] Database gvmd already exists in PostgreSQL
[i] Role DBA already exists in PostgreSQL
[*] Applying permissions
ЗАМЕЧАНИЕ: роль "_gvm" уже назначена членом роли "dba" ролью "postgres"
GRANT ROLE
[i] Extension uuid-ossp already exists for gvmd database
[i] Extension pgcrypto already exists for gvmd database
[i] Remove old parts from DB for new pg-gvm extension
ЗАМЕЧАНИЕ: представление "result_new_severities_dynamic" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_new_severities" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_new_severities_static" не существует, пропускается
ЗАМЕЧАНИЕ: представление "result_overrides" не существует, пропускается
ЗАМЕЧАНИЕ: функция hosts_contains() не существует, пропускается
ЗАМЕЧАНИЕ: функция max_hosts() не существует, пропускается
ЗАМЕЧАНИЕ: функция regexp() не существует, пропускается
[*] Creating extension pg-gvm
ОШИБКА: расширение "pg-gvm" отсутствует
ПОДРОБНОСТИ: Не удалось открыть управляющий файл расширения "/usr/share/postgresql/16/extension/pg-gvm.control": Нет такого файла или каталога.
ПОДСКАЗКА: Сначала расширение нужно установить в системе, где работает PostgreSQL.
