OpenVAS stands for Open Vulnerability Assessment System and is a network security scanner with associated tools like a graphical user front-end. The core component is a server with a set of network vulnerability tests (NVTs) to detect security problems in remote systems and applications.
There are two types of user authentication methods used in OpenVAS - passwords and ssl certificates.
After installation you must first make an OpenVAS user. To add a new user run the following with root privileges:
This will also ask you if you want to use password or certificate as a mean of authentification.
You can also remove a user using (also with root privileges):
You can make a new user certificate using (with root privileges):
Before running OpenVAS you should fetch new plugins and the newest security checks:
Currently there is a problem with openvas-nvt-sync updating (at least with the packet installable through the AUR). To fix it - edit /usr/sbin/openvas-nvt-sync and find the line containing SYNC_TMP_DIR and change it to look like:
# SYNC_TMP_DIR=`mktemp -d openvas-nvt-sync.XXXXXXXXXX -t`
To use OpenVAS, first you need to start OpenVAS server:
To start the OpenVAS client run:
# OpenVAS-Client &