# Copyright 1999-2018 Gentoo Authors # Distributed under the terms of the GNU General Public License v2 EAPI=7 inherit eutils DESCRIPTION="A remote security scanner" HOMEPAGE="http://www.openvas.org/" SLOT="0" LICENSE="GPL-2" KEYWORDS="~amd64 ~x86" IUSE="extras cli gsa ospd wmi ldap-vas radius-vas" RDEPEND=" dev-db/redis wmi? ( =net-analyzer/openvas-libraries-9.0.3[wmi] ) radius-vas? ( =net-analyzer/openvas-libraries-9.0.3[radius-vas] ) ldap-vas? ( =net-analyzer/openvas-libraries-9.0.3[ldap-vas] ) =net-analyzer/openvas-libraries-9.0.3 =net-analyzer/openvas-scanner-5.1.3 =net-analyzer/openvas-manager-7.0.4 gsa? ( =net-analyzer/greenbone-security-assistant-7.0.4 ) cli? ( =net-analyzer/gvm-tools-1.4.1 ) ospd? ( =net-analyzer/ospd-1.3.2 ) extras? ( =net-analyzer/openvas-libraries-9.0.3[extras] =net-analyzer/openvas-scanner-5.1.3[extras] =net-analyzer/openvas-manager-7.0.4[extras] =net-analyzer/greenbone-security-assistant-7.0.4[extras] app-doc/doxygen[dot] app-doc/xmltoman dev-perl/SQL-Translator app-text/htmldoc dev-texlive/texlive-latexextra sys-devel/gettext dev-python/polib )" pkg_postinst() { ewarn "-------------------------------------------------IMPORTANT-------------------------------------------------------" ewarn "-----------------------------------------------------------------------------------------------------------------" elog "You will need to set up your /etc/redis.conf file properly before running openvas-scanner for the first time. " elog "For details, please see the example config file:" elog "https://github.com/greenbone/openvas-scanner/blob/master/doc/redis_config_examples/redis_4_0.conf.in" elog "Please configure /etc/openvas/openvassd.conf properly according to redis listen sock" elog "/etc/openvas/openvassd.conf --> kb_location = /tmp/redis.sock" ewarn "-----------------------------------------------------------------------------------------------------------------" ewarn "--------------------------------------------QUICK START COMMANDS-------------------------------------------------" ewarn "-----------------------------------------------------------------------------------------------------------------" elog "'env-update && source /etc/profile' --> Update PATHS" elog "'openvas-manage-certs -a' --> Create certificates automatically first time" elog "'greenbone-nvt-sync' --> Update NVT Feed" elog "'greenbone-scapdata-sync' --> Update scapdata Feed" elog "'greenbone-certdata-sync' --> Update certdata Feed" elog "'openvassd' --> Start OpenVAS-Scanner" elog "'openvasmd --rebuild --progress' --> Rebuild NVT cache" elog "'openvasmd --create-user=admin --role=Admin' --> Create User for GSAD-WEBUI.Save your password" elog "'openvasmd -p 9390 -a 127.0.0.1' --> Start OpenVAS-Manager on port 9390" elog "'gsad -f --listen=127.0.0.1 --mlisten=127.0.0.1 -m 9390 -p 4000' --> Start OpenVAS-WEBUI on public 4000" ewarn "-----------------------------------------------------------------------------------------------------------------" ewarn "-------------------------------------------PLUGIN KEY AND SIGNING------------------------------------------------" ewarn "-----------------------------------------------------------------------------------------------------------------" elog "'gpg --homedir=/etc/openvas/gnupg --gen-key' --> Generate Key" elog "'wget https://www.greenbone.net/GBCommunitySigningKey.asc' --> Official OpenVAS Transfer Key" elog "'gpg --homedir=/etc/openvas/gnupg --import GBCommunitySigningKey.asc' --> Import OpenVAS Transfer Key" elog "'gpg --homedir=/etc/openvas/gnupg --lsign-key 0ED1E580' --> Sign" ewarn "-----------------------------------------------------------------------------------------------------------------" ewarn "----------------------------------------EXTRA CHECKS CAN BE GET FROM---------------------------------------------" ewarn "-----------------------------------------------------------------------------------------------------------------" optfeature "Nikto — a web server scanning and testing tool" net-analyzer/nikto optfeature "NMAP — a portscanner" net-analyzer/nmap optfeature "ike-scan - an IPsec VPN scanning, fingerprinting and testing tool" net-analyzer/ike-scan optfeature "amap — an application protocol detection tool" net-analyzer/amap optfeature "ovaldi (OVAL) — an OVAL Interpreter" app-forensics/ovaldi optfeature "portbunny — a Linux-kernel-based portscanner" net-analyzer/portbunny optfeature "w3af — a web application attack and audit framework" net-analyzer/w3af }