OpenVAS 6 installation on Debian Wheezy
This article intends to fill the gaps that I found in the OpenVAS installation when installing the software on a Debian 7 "Wheezy" headless server.
I chose Debian due to standards of the environment and keeping Linux operating system deployment to one distribution.
The installation instructions provided on OpenVAS' website are very good, so I won't reproduce them here. Please install the packages as described.
With the base OpenVAS system installed, you are going to need to manage the OpenVAS server remotely.
By default, remote access to the greenbone-security-assistant web portal is secured to localhost, so we need to allow access:
Find and change the line from:
Save your changes and exit the editor:
Note: For the security minded, yes, I've been sloppy here. You can alternatively restrict access to a single IP address.
If you receive the following error on the "SecInfo Management" pages:
SCAP and/or CERT database missing on OMP server
You need to copy the following files to the
Then run the openvas-certdata-sync command again.
Updating the database
If you want your OpenVAS server to update the local databases, it requires outbound access to
rsync.openvas.org (the same IP address as
OpenVAS uses rsync for synchronisation. That means if you are behind a corporate firewall, you can make OpenVAS use proxy for rsync through
RSYNC_PROXY enviroment variable.
From the rsync man page:
You may establish the connection via a web proxy by setting the environment variable RSYNC_PROXY to a hostname:port pair pointing to your web proxy. Note that your web proxy's configuration must support proxy connections to port 873.