martinboller / gse Goto Github PK

Hello,
i tried to install-GSE-2021.sh today on a fresh debain 11. But I can't get a connection to the GSA webinterface. Do I need to run another script if I want to use it as a standalone GSE?

LG
Fred

Currently texlive-full is installed as installing smaller packages broke apt and/or PDF reporting.
As installing texlive-full takes a very long time, this is not optimal, but further testing is required.

Add NGINX Proxy as frontend for GSA to provide additional security.

Remove installation of ospd - install ospd-openvas only

Do not install poetry / install osdp-openvas python modules w/o poetry

Hello and thanks for your work!
I've just set up an environemnt in a breeze.

I noticed that if cloning the repo (which I think is the most used method here) the add-secondary-2-primary script fails, because in the script the path /root/secondary-certs.sh is hardcoded. Copying the script in /root solves the issue.

Some random questions (since i can't find your email :-):

• have you considered to move the project in ansible and use the greenbone community containers instead of building everything from source? With ansible you could automate better the secondary nodes addition
• (I'm pretty new to OpenVAS/GSE and) as can I understand the connection between primary-secondary is made directly from the primary. So, where the secondary is a remote machine, I made the connection installing an openvpn server on primary and a openvpn client on secondary. Have I understand the architecture correctly? If this is a feasible setup, the openvpn thing could be automated also (using CA certificate of gse and client cert of scanners for authentication, for example)

Thanks!

Do not install poetry / install osdp-openvas python modules w/o poetry.
Keep function for testing