Ghostwriter icon indicating copy to clipboard operation
Ghostwriter copied to clipboard
verified publisher icon GhostManager

Issues with the Scan Servers task

Open domwhewell-sage opened this issue 2 years ago • 2 comments

Describe the bug The Scan Servers task seems to run however the function crashes when trying to initiate the nmap.PortScanner() object.

Also it is not clear on the wiki how to grant the root permissions to the django q cluster. It suggests starting the cluster as root but does not make it clear the cluster is started from within the django container so I'm thinking it may need to guide people in the direction of editing the Dockerfile or maybe an addition could be made to the ghostwriter-cli config?

To Reproduce Steps to reproduce the behavior:

  1. Add a scheduled task for ghostwriter.shepherd.tasks.scan_servers
  2. Allow it to run
  3. See the error
'nmap program was not found in path. PATH is : /usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin' : Traceback (most recent call last):
File "/usr/local/lib/python3.10/site-packages/django_q/cluster.py", line 432, in worker
res = f(*task["args"], **task["kwargs"])
File "/app/ghostwriter/shepherd/tasks.py", line 593, in scan_servers
scanner = nmap.PortScanner()
File "/usr/local/lib/python3.10/site-packages/nmap/nmap.py", line 136, in __init__
raise PortScannerError(
nmap.nmap.PortScannerError: 'nmap program was not found in path. PATH is : /usr/local/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin'

Expected Behavior The task runs and triggers a slack alert if there is open ports

Screenshots

  1. Here is a screenshot of my Scheduled task only the "Name" and "Func" has been edited image
  2. A screenshot of the error message from the "Failed Tasks" view image

Server Specs:

  • OS: Ubuntu 22.04
  • Docker: Docker version 24.0.7, build afdd53b,
  • Ghostwriter: v4.0.1

Additional context I'm not sure if alpine linux supports it but if it does looks like the nmap binary needs to be added into the local and production Dockerfile's for django

Edits should be made to the wiki to instruct the user to change the Dockerfile to run the django application as root at their own risk in order to scan SYN TCP ports using the Scan Servers task or Edits should be made to the ghostwriter-cli to enable this as a config setting

domwhewell-sage avatar Nov 03 '23 12:11 domwhewell-sage

Instead of giving the container full root permissions it might be possible to set the capabilities from this link

https://secwiki.org/w/Running_nmap_as_an_unprivileged_user

When I get a chance I'll also have a look at this

domwhewell avatar Nov 08 '23 20:11 domwhewell

This issue has been labeled as stale because it has been open for 30 days with no activity.

github-actions[bot] avatar Jun 18 '24 09:06 github-actions[bot]

This issue is closed because it has been inactive for 14 days since being labeled stale. Feel free to re-open the issue with a comment. If this needs further discussion (e.g., a feature request), it might be better to open a topic under the Discussions tab.

github-actions[bot] avatar Jul 03 '24 09:07 github-actions[bot]