• Установка Greenbone Vulnerability Management (GVM) 21.04 на Debian 10 Buster

    # Устанавливаем необходимые пакеты зависимостей.

    sudo apt-get install build-essential curl cmake pkg-config gnupg libglib2.0-dev libgpgme-dev libgnutls28-dev uuid-dev libssh-gcrypt-dev libhiredis-dev libxml2-dev libpcap-dev libnet1-dev libldap2-dev libradcli-dev libglib2.0-dev libgnutls28-dev libpq-dev gcc-mingw-w64 libgnutls28-dev libglib2.0-dev libpopt-dev libunistring-dev heimdal-dev perl-base bison libglib2.0-dev libgnutls28-dev libgcrypt20-dev libpcap-dev libgpgme-dev libksba-dev nmap gcc-mingw-w64 libgnutls28-dev libglib2.0-dev libpopt-dev libunistring-dev heimdal-dev bison libglib2.0-dev libgnutls28-dev libgcrypt20-dev libpcap-dev libgpgme-dev libksba-dev nmap python-impacket libsnmp-dev libical-dev xsltproc rsync texlive-latex-extra texlive-fonts-recommended xmlstarlet zip rpm fakeroot nsis gnupg gpgsm sshpass socat snmp gnutls-bin xml-twig-tools libmicrohttpd-dev libxml2-dev libglib2.0-dev libgnutls28-dev python3-lxml python3-pip python3-setuptools python3-packaging python3-wrapt python3-cffi python3-psutil python3-lxml python3-defusedxml python3-paramiko python3-redis redis-server -y
    
    curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | apt-key add
    echo deb https://dl.yarnpkg.com/debian/ stable main | tee /etc/apt/sources.list.d/yarn.list
    
    apt-get update
    apt-get install yarn -y
    
    yarn install
    yarn upgrade

    # Создаем пользователя GVM от которого будет работать система.

    useradd -r -d /opt/gvm -c "GVM User" -s /bin/bash gvm
    
    mkdir /opt/gvm
    chown gvm:gvm /opt/gvm
    
    echo "gvm ALL = NOPASSWD: $(which make) install" > /etc/sudoers.d/gvm

    # Устанавливаем и настраиваем PostgreSQL.

    apt-get install postgresql postgresql-contrib postgresql-server-dev-11 -y
    
    sudo -Hiu postgres createuser gvm
    sudo -Hiu postgres createdb -O gvm gvmd
    sudo -Hiu postgres psql -c 'create role dba with superuser noinherit;' gvmd
    sudo -Hiu postgres psql -c 'grant dba to gvm;' gvmd
    sudo -Hiu postgres psql -c 'create extension "uuid-ossp";' gvmd
    sudo -Hiu postgres psql -c 'create extension "pgcrypto";' gvmd
    
    systemctl restart postgresql
    systemctl enable postgresql

    # Скачиваем исходники пакетов входящих в состав системы GVM 21.04.

    su - gvm
    
    mkdir gvm-source
    cd gvm-source
    
    export GVM_VERSION=21.4.4
    export GVM_LIBS_VERSION=$GVM_VERSION
    export GVMD_VERSION=21.4.5
    export GSA_VERSION=$GVM_VERSION
    export GSAD_VERSION=$GVM_VERSION
    export OPENVAS_SMB_VERSION=21.4.0
    export OPENVAS_SCANNER_VERSION=$GVM_VERSION
    export OSPD_OPENVAS_VERSION=$GVM_VERSION
    
    curl -f -L https://github.com/greenbone/gvm-libs/archive/refs/tags/v$GVM_LIBS_VERSION.tar.gz -o gvm-libs-$GVM_LIBS_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/gvmd/archive/refs/tags/v$GVMD_VERSION.tar.gz -o gvmd-$GVMD_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/gsa/archive/refs/tags/v$GSA_VERSION.tar.gz -o gsa-$GSA_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/gsad/archive/refs/tags/v$GSAD_VERSION.tar.gz -o gsad-$GSAD_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/openvas-smb/archive/refs/tags/v$OPENVAS_SMB_VERSION.tar.gz -o openvas-smb-$OPENVAS_SMB_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/openvas-scanner/archive/refs/tags/v$OPENVAS_SCANNER_VERSION.tar.gz -o openvas-scanner-$OPENVAS_SCANNER_VERSION.tar.gz
    curl -f -L https://github.com/greenbone/ospd-openvas/archive/refs/tags/v$OSPD_OPENVAS_VERSION.tar.gz -o ospd-openvas-$OSPD_OPENVAS_VERSION.tar.gz
    
    tar -xvzf gvm-libs-$GVM_LIBS_VERSION.tar.gz && mv gvm-libs-$GVM_LIBS_VERSION gvm-libs
    tar -xvzf gvmd-$GVMD_VERSION.tar.gz && mv gvmd-$GVMD_VERSION gvmd
    tar -xvzf gsa-$GSA_VERSION.tar.gz && mv gsa-$GSA_VERSION gsa
    tar -xvzf gsad-$GSAD_VERSION.tar.gz && mv gsad-$GSAD_VERSION gsad
    tar -xvzf openvas-smb-$OPENVAS_SMB_VERSION.tar.gz && mv openvas-smb-$OPENVAS_SMB_VERSION openvas-smb
    tar -xvzf openvas-scanner-$OPENVAS_SCANNER_VERSION.tar.gz && mv openvas-scanner-$OPENVAS_SCANNER_VERSION openvas-scanner
    tar -xvzf ospd-openvas-$OSPD_OPENVAS_VERSION.tar.gz && mv ospd-openvas-$OSPD_OPENVAS_VERSION ospd-openvas

    Читать далее…

    БесполезноСлабоватоПриемлемоОтличноПревосходно (1 голос(ов), в среднем: 4,00 из 5)
    Загрузка...
© IT-блог Жаконды All Rights Reserved.
Яндекс.Метрика