PacketFence
Bug Tracking System
Main | My View | View Issues | Change Log | Roadmap
  

View Issue Details Jump to Notes ] Issue History ] Print ]
IDProjectCategoryView StatusDate SubmittedLast Update
0000786PacketFencepublic2009-08-27 17:522011-01-26 15:43
Reporterobilodeau 
Assigned Toobilodeau 
PrioritynormalSeverityminorReproducibilitysometimes
StatusclosedResolutionfixed 
PlatformOSOS Version
Product Version 
Target VersionFixed in Version 
Summary0000786: nessus scan from the admin web ui is broken with nessus 3
DescriptionError:
Aug 27 17:20:26 pfcmd(0): Nessus login failed: 1: Connect to 192.168.1.60:1241 failed. (IO::Socket::INET configuration failederror:00000000:lib(0):func(0):reason(0)) (pf::trigger::trigger_scan)

Upstream Net::Nessus::ScanLite makes an assumption about the SSL certificate type provided by the nessus sever.

In the cod in the new sub:
<code>
        my $self = bless {
                _code => 0,
                _error => "",
                ntp_version => '1.2',
                host => undef,
                port => 1241,
                user => undef,
                password => undef,
                #ssl_version => 'TLSv1',
                ssl_version => 'SSLv2/3',
                timeout => 1,
                ssl => 1,
                debug => 1,
                _cfg => undef,
                _section => 'nessus',
                _duration => 0,
                _prefsect => 'preferences',
                _defsection => 'defaults',
                _holes => [],
                _info => [],
                preferences => {},
        
        },$class;

</code>

I changed timeout to 10 and ssl to TLSv1 and it started to work again.

I was able to reproduce in our lab 100% of the time. Pretty sure nessus 3 started to use TLS instead of SSLvX.

We may have to provide the rpm in our repo with the TLSv1 option instead of SSL and a timeout that makes more sense...
TagsNo tags attached.
fixed in git revision
fixed in mtn revision
Attached Files

- Relationships
related to 0000823closedobilodeau Nessus Scan page detection 

-  Notes
(0001352)
obilodeau (reporter)
2009-10-21 13:04

 Reworking nessus support right now and we are getting rid of Nessus::ScanLite
(0001360)
obilodeau (reporter)
2009-10-26 09:45

 As of monotone rev: 1118801e2e89815c8887816f01100623a98b5579
no need of Nessus::ScanLite no where (except to detect if to show Scan web admin page or not)

- Issue History
Date Modified Username Field Change
2009-08-27 17:52 obilodeau New Issue
2009-08-27 17:52 obilodeau Status new => assigned
2009-08-27 17:52 obilodeau Assigned To => obilodeau
2009-10-21 13:04 obilodeau Note Added: 0001352
2009-10-26 09:45 obilodeau Note Added: 0001360
2009-10-26 09:45 obilodeau Status assigned => resolved
2009-10-26 09:45 obilodeau Resolution open => fixed
2009-10-26 09:49 obilodeau Relationship added related to 0000823
2011-01-26 15:43 obilodeau Status resolved => closed

Copyright © 2000 - 2012 MantisBT Group
Powered by Mantis Bugtracker