greenbone / docs Goto Github PK
View Code? Open in Web Editor NEWDocumentation for the Greenbone Community Edition
Home Page: https://greenbone.github.io/docs/
License: Creative Commons Attribution Share Alike 4.0 International
Documentation for the Greenbone Community Edition
Home Page: https://greenbone.github.io/docs/
License: Creative Commons Attribution Share Alike 4.0 International
docs/src/22.4/container/index.md
Line 98 in ba8fcef
The pip version installed by default on Debian 10 is 18.1, which will cause the installation of ospd-openvas to fail.
root@debian:~/source/ospd-openvas-21.4.4# python3 -m pip install . --prefix=$INSTALL_PREFIX --root=$INSTALL_DIR --no-warn-script-location
Processing /root/source/ospd-openvas-21.4.4
Installing build dependencies ... done
Complete output from command python setup.py egg_info:
Traceback (most recent call last):
File "<string>", line 1, in <module>
File "/usr/lib/python3.7/tokenize.py", line 447, in open
buffer = _builtin_open(filename, 'rb')
FileNotFoundError: [Errno 2] No such file or directory: '/tmp/pip-req-build-kweufads/setup.py'
----------------------------------------
Command "python setup.py egg_info" failed with error code 1 in /tmp/pip-req-build-kweufads/
Should upgrade the pip before install.
python3 -m pip install pip --upgrade
docs/src/_static/docker-compose-22.4.yml
Line 140 in c48f9d0
see also: https://forum.greenbone.net/t/mqtt-without-authentication/13647/10
cause MQTT Broker Does Not Require Authentication
triggering otherwise.
docs/src/22.4/container/admin-user.md
Line 1 in ba8fcef
End users should know this up front before following all the instructions to the end only to find the deployment is using a hard coded weak and known password, and not having the ability to change it in the now deployed instance and having to destroy and rebuild with the admin user instructions.
Hello, as there is a docker-compose.yml
in your documentation, I am migrating it to a kubernets-manifest.
Are you interested in an PR for this docs?
As I am quite new to greenbone, I need some help about the connections needed between the containers/services.
E.g. docker-compose.yml
is here quite implicit in many cases, but for kubernetes I have to configure the ports the containers want to connect each other. There are also some other concrete questions I will ask when there is somebody who wants to support here. Please comment if you would like to contribute. Thanks and kind regards!
Docker workflow commands in the documentation should work.
The docker-compose
commands in the documentation were all changed to docker compose
recently.
The official tool for managing multi-container Docker applications is "docker-compose" with a hyphen ("-").
docs/src/_static/docker-compose-22.4.yml
Line 92 in ba8fcef
xdg-open "http://127.0.0.1:9392" 2>/dev/null >/dev/null &
This is misleading and makes the end user think that the service is only bound to loopback. Either the documentation should state to use the host name or reconfigure the deployment to bind the web ui port to loopback for security purposes.
docker-compose -f $DOWNLOAD_DIR/docker-compose.yml -p greenbone-community-edition
run --rm ospd-openvas greenbone-nvt-sync
manual update of greenbone feeds
manual update will fail since greenbone-nvt-sync and greenbone-feed-sync are nolonger part of the ospd-openvas and gvmd containers.
Fix update documentation to remove this reference. Alternatively update the documentation to explain what would be required to use the new greenbone-feed-sync python script running on the host.
docs/src/_static/docker-compose-22.4.yml
Line 140 in ba8fcef
The deployment results in the mqtt service binding to all interfaces, allowing network adversaries to access the service, when it should not be exposed outside the host.
Strictly speaking not a bug (unless you find non-secured communication to a security solution faulty ;-) but a proposal to enrich the docs.
There are quite some questions in the forum how to enable SSL with GSA. For the community docs, the answer is "when it's not documented, it's not there", "you need to build your own container".
Luckily, the gsa start script already accepts an environment variable. Here's my solution, working with the existing containers:
gsa:
image: greenbone/gsa:${GSA_TAG}
container_name: gsa
environment:
GSAD_ARGS: --ssl-private-key=/cert/gsa.key --ssl-certificate=/cert/gsa.crt
ports:
- 9392:443
volumes:
- gvmd_socket_vol:/run/gvmd
- /etc/ssl/gsa:/cert:ro
depends_on:
- gvmd
That the Docs showing me, what I really need to build the binaries and what I really need to run the binary.
Currently all are deps for build and run are mixed deps.
In docs/src/22.4/container/index.md , some containers' description should contain "Shows the license and exits afterwards."
In docs/src/22.4/container/index.md , some containers' descriptions contain "Shows the license and exists afterwards."
This is saying the opposite of their actual behavior.
Go to the containers documentation, to the "Description" paragraph. There are several descriptions concerned.
The install documentation at https://greenbone.github.io/docs/latest/21.4/container/index.html#installing-docker-compose states that docker-compose 1.27 is required (which would be provided by bullseye-backports). This is actually not sufficient: since service_completed_successfully
is used, the minimum required version is 1.29.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.