Welcome to OCS Inventory NG community support, where you can ask questions and receive answers from other members of the community.

Please ask questions only in English or French.

Release 2.12.3 available

The official documentation can be found on https://wiki.ocsinventory-ng.org. Read it before asking your question.

Categories

CVE search is not working -- No database updated.

Hello,

Installed CVE search on same machine. I would like to send data to my local CVE database also want to update data on local CVE database. But It's ways have two issue.

1. 0 CVE has been added to database -- HOST : 127.0.0.1:27017

2. I did then changes on the configuration to do not fetch CVE search on pub. URL but it's still downloading it.

[root@ocsserver cve-search]#  netstat -nltup

Active Internet connections (only servers)

Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name

tcp        0      0 127.0.0.1:27017         0.0.0.0:*               LISTEN      110140/mongod

tcp        0      0 0.0.0.0:3306            0.0.0.0:*               LISTEN      7568/mysqld

tcp        0      0 127.0.0.1:6379          0.0.0.0:*               LISTEN      72394/redis-server

tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      1/systemd

tcp        0      0 0.0.0.0:6000            0.0.0.0:*               LISTEN      7576/X

tcp        0      0 192.168.122.1:53        0.0.0.0:*               LISTEN      8181/dnsmasq

tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      7265/sshd

tcp        0      0 127.0.0.1:631           0.0.0.0:*               LISTEN      7268/cupsd

tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      7661/master

tcp        0      0 127.0.0.1:6010          0.0.0.0:*               LISTEN      9306/sshd: root@pts

tcp        0      0 127.0.0.1:6011          0.0.0.0:*               LISTEN      28179/sshd: root@pt

tcp6       0      0 :::111                  :::*                    LISTEN      1/systemd

tcp6       0      0 :::80                   :::*                    LISTEN      7281/httpd

tcp6       0      0 :::6000                 :::*                    LISTEN      7576/X

tcp6       0      0 :::22                   :::*                    LISTEN      7265/sshd

tcp6       0      0 ::1:631                 :::*                    LISTEN      7268/cupsd

tcp6       0      0 ::1:25                  :::*                    LISTEN      7661/master

tcp6       0      0 ::1:6010                :::*                    LISTEN      9306/sshd: root@pts

tcp6       0      0 ::1:6011                :::*                    LISTEN      28179/sshd: root@pt

udp        0      0 192.168.122.1:53        0.0.0.0:*                           8181/dnsmasq

udp        0      0 0.0.0.0:67              0.0.0.0:*                           8181/dnsmasq

udp        0      0 0.0.0.0:68              0.0.0.0:*                           91121/dhclient

udp        0      0 0.0.0.0:111             0.0.0.0:*                           1/systemd

udp        0      0 0.0.0.0:5353            0.0.0.0:*                           6623/avahi-daemon:

udp        0      0 0.0.0.0:49408           0.0.0.0:*                           6623/avahi-daemon:

udp        0      0 127.0.0.1:323           0.0.0.0:*                           6660/chronyd

udp        0      0 0.0.0.0:837             0.0.0.0:*                           6602/rpcbind

udp6       0      0 :::111                  :::*                                1/systemd

udp6       0      0 ::1:323                 :::*                                6660/chronyd

udp6       0      0 :::837                  :::*                                6602/rpcbind

[root@ocsserver cve-search]# ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000

    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

    inet 127.0.0.1/8 scope host lo

       valid_lft forever preferred_lft forever

    inet6 ::1/128 scope host

       valid_lft forever preferred_lft forever

2: ens33: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP group default qlen 1000

    link/ether 00:0c:29:47:54:9d brd ff:ff:ff:ff:ff:ff

    inet 192.168.11.158/24 brd 192.168.11.255 scope global noprefixroute dynamic ens33

       valid_lft 1567sec preferred_lft 1567sec

    inet6 fe80::c9da:740b:689d:feba/64 scope link tentative noprefixroute dadfailed

       valid_lft forever preferred_lft forever

    inet6 fe80::a6ad:e8a4:69f7:cfce/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

3: virbr0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default qlen 1000

    link/ether 52:54:00:23:e5:48 brd ff:ff:ff:ff:ff:ff

    inet 192.168.122.1/24 brd 192.168.122.255 scope global virbr0

       valid_lft forever preferred_lft forever

4: virbr0-nic: <BROADCAST,MULTICAST> mtu 1500 qdisc pfifo_fast master virbr0 state DOWN group default qlen 1000

    link/ether 52:54:00:23:e5:48 brd ff:ff:ff:ff:ff:ff

[root@ocsserver cve-search]#

[root@ocsserver cve-search]# cat /etc/ocsinventory/ocsinventory-agent.cfg

#

# OCS Inventory "Unix Unified Agent" Configuration File

#

# options used by cron job overides this (see /etc/sysconfig/ocsinventory-agent)

#

# Server URL, unconmment if needed

server = http://192.168.11.158/ocsinventory

##local = /var/lib/ocsinventory-agent

basedir=/var/lib/ocsinventory-agent

# Administrative TAG (optional, must be filed before first inventory)

 tag = OCS Server

# How to log, can be File,Stderr,Syslog

logger = Stderr

logfile = /var/log/ocsinventory-agent/ocsinventory-agent.log

[root@ocsserver cve-search]#

==

[root@ocsserver etc]#   cd  /usr/share/ocsinventory-reports/ocsreports/crontab/

[root@ocsserver crontab]# php cron_cve.php

Get software publisher ...

Software publisher OK ...

CVE treatment started ...

Please wait, CVE processing is in progress. It could take a few hours

Processing (none) softwares ...

Processing CentOS softwares ...

Processing Fedora Project softwares ...

Processing MongoDB softwares ...

Processing OCS Inventory NG softwares ...

Processing Remi Collet softwares ...

Processing Remi's RPM repository <https://rpms.remirepo.net/> softwares ...

0 CVE has been added to database

==

[root@ocsserver etc]# cat sources.ini

[Sources]

MYOWN:   http://192.168.11.158/ocsreports

[root@ocsserver etc]# cat configuration.ini

[Redis]

Host: localhost

Port: 6379

#Password: RedisPassword

redisQ: 9

VendorsDB: 10

#NotificationsDB: 11

#RefDB: 12

[Database]

Host: localhost

Port: 27017

DB: cvedb

PluginName: mongodb

[dbmgt]

Tmpdir: ./tmp/

[FulltextIndex]

Indexdir: ./indexdir/

[Webserver]

Host: 127.0.0.1

Port: 5000

Debug: True

PageLength: 50

LoginRequired: False

SSL: True

Certificate: ssl/cve-search.crt

Key: ssl/cve-search.key

WebInterface: Full

[Logging]

Logfile: log/cve-search.log

Updatelogfile: log/update_populate.log

MaxSize: 150MB

Backlog: 5

[Proxy]

http:

IgnoreCerts: False

[CVE]

StartYear: 2002

[root@ocsserver etc]#

==

Best regards
in OCS Inventory NG server for Unix by (160 points)
edited by
Share on
share on gp share on fb share on tw share on li

Please log in or register to answer this question.

 
Powered by Question2Answer
...