Greenbone Security Assistant
The Greenbone Security Assistant is the web interface developed for the Greenbone Enterprise appliances written in React.
Releases
All release files are signed with
the Greenbone Community Feed integrity key.
This gpg key can be downloaded at https://www.greenbone.net/GBCommunitySigningKey.asc
and the fingerprint is 8AE4 BE42 9B60 A59B 311C 2E73 9823 FAA6 0ED1 E580.
Installation
Prerequisites for GSA:
- node.js >= 14.0
- yarn >= 1.0
To install nodejs 14 the following commands can be used
export VERSION=node_14.x
export KEYRING=/usr/share/keyrings/nodesource.gpg
export DISTRIBUTION="$(lsb_release -s -c)"
curl -fsSL https://deb.nodesource.com/gpgkey/nodesource.gpg.key | gpg --dearmor | sudo tee "$KEYRING" >/dev/null
gpg --no-default-keyring --keyring "$KEYRING" --list-keys
echo "deb [signed-by=$KEYRING] https://deb.nodesource.com/$VERSION $DISTRIBUTION main" | sudo tee /etc/apt/sources.list.d/nodesource.list
echo "deb-src [signed-by=$KEYRING] https://deb.nodesource.com/$VERSION $DISTRIBUTION main" | sudo tee -a /etc/apt/sources.list.d/nodesource.listChange into the gsa source directory and delete the possible existing build output directory.
cd path/to/gsa
rm -rf buildInstall the JavaScript dependencies and start the build process. The build process
creates a build directory with a production build of GSA. The build/img directory
will contain images like logos and banners. The build/static directory will contain
generated JavaScript and CSS files and additionally in the build/static/media
directory SVG files for all icons will be found.
yarn
yarn buildAll content of the production build can be shipped with every web server. For
providing GSA via our gsad web server, the
files need to be copied into the share/gvm/gsad/web/ subdirectory of your
chosen CMAKE_INSTALL_PREFIX directory when building gsad. Normally this is
set to /usr or /usr/local.
mkdir -p $INSTALL_PREFIX/share/gvm/gsad/web/
cp -r build/* $INSTALL_PREFIX/share/gvm/gsad/web/If you are not familiar or comfortable building from source code, we recommend that you use the Greenbone Security Manager TRIAL (GSM TRIAL), a prepared virtual machine with a readily available setup. Information regarding the virtual machine is available at https://www.greenbone.net/en/testnow.
Developing
Using GSA requires to re-build the JavaScript bundle. This process is very time-consuming and therefore may be avoided during development. It is possible to run GSA in a special web development server. The development server can be started with:
cd path/to/gsa && yarn run startAfterwards the development web server is set up and a new browser window is
opened at the URL http://127.0.0.1:8080, containing the GSA web application.
When a JavaScript file of GSA in the src folder is changed, the browser window
will reload automatically.
Besides the development server gsad needs to be running with CORS enabled.
gsad --http-cors="http://127.0.0.1:8080"To be able to communicate with gsad, the web application needs to know the
server URL. This can be accomplished by editing the path/to/gsa/public/config.js
file. The following lines can be used for a local gsad running with HTTP on
port 9392:
config = {
protocol: 'http',
server: '127.0.0.1:9392',
};For HTTPS only the protocol property must be 'https' accordingly.
After changing the config.js file, the browser window should be reloaded
manually.
Support
For any question on the usage of gsa please use the Greenbone Community
Portal. If you found a problem with the
software, please create an issue on
GitHub. If you are a Greenbone customer you may alternatively or additionally
forward your issue to the Greenbone Support Portal.
Maintainer
This project is maintained by Greenbone Networks GmbH.
Contributing
Your contributions are highly appreciated. Please create a pull request on GitHub. Bigger changes need to be discussed with the development team via the issues section at github first.
License
Copyright (C) 2009-2022 Greenbone AG
Licensed under the AGPL-3.0 GNU Affero General Public License v3.0 or later.