Build own cve search DB.

Hello,

 I want to build my own CVE search. I do not want to push my data to public CVE. So what I did I install OCS inventory Server + Client + CVE search on a single machine first. Even I will make them separately. Like, will install CVE search on a separate machine.

How is it possible? Kindly share your idea. I did changes on configurations to avoid fetching data from the Public CVE search. 

VULN_CVESEARCH_HOST = 127.0.0.1:80

==

cron_cve.php is not sending data to public URL. I wanted to send data to my local MongoDB directly.

==

[root@ocsserver etc]#   cd  /usr/share/ocsinventory-reports/ocsreports/crontab/

[root@ocsserver crontab]# php cron_cve.php

Get software publisher ...

Software publisher OK ...

CVE treatment started ...

Please wait, CVE processing is in progress. It could take a few hours

Processing (none) softwares ...

Processing CentOS softwares ...

Processing Fedora Project softwares ...

Processing MongoDB softwares ...

Processing OCS Inventory NG softwares ...

Processing Remi Collet softwares ...

Processing Remi's RPM repository <https://rpms.remirepo.net/> softwares ...

0 CVE has been added to database

[root@ocsserver crontab]#

[root@ocsserver etc]# cat configuration.ini

[Redis]

Host: localhost

Port: 6379

#Password: RedisPassword

redisQ: 9

VendorsDB: 10

#NotificationsDB: 11

#RefDB: 12

[Database]

Host: localhost

Port: 27017

DB: cvedb

PluginName: mongodb

[dbmgt]

Tmpdir: ./tmp/

[FulltextIndex]

Indexdir: ./indexdir/

[Webserver]

Host: 127.0.0.1

Port: 5000

Debug: True

PageLength: 50

LoginRequired: False

SSL: True

Certificate: ssl/cve-search.crt

Key: ssl/cve-search.key

WebInterface: Full

[Logging]

Logfile: log/cve-search.log

Updatelogfile: log/update_populate.log

MaxSize: 150MB

Backlog: 5

[Proxy]

http:

IgnoreCerts: False

[CVE]

StartYear: 2002

[root@ocsserver etc]# cat sources.ini

[Sources]

MYOWN:   http://192.168.11.158/ocsreports

[root@ocsserver etc]#

It is still fetching data from Pub.

[root@ocsserver cve-search]# ./sbin/db_mgmt_json.py -p

2021-01-20 22:24:55,580 - CVEDownloads - INFO     - CVE database population started

2021-01-20 22:24:55,580 - CVEDownloads - INFO     - Starting CVE database population starting from year: 2002

2021-01-20 22:24:55,618 - DatabaseIndexer - INFO     - Success to create index [('id', 1)] on cves

2021-01-20 22:24:55,623 - DatabaseIndexer - INFO     - Success to create index [('vulnerable_configuration', 1)] on cves

2021-01-20 22:24:55,628 - DatabaseIndexer - INFO     - Success to create index [('vulnerable_product', 1)] on cves

2021-01-20 22:24:55,633 - DatabaseIndexer - INFO     - Success to create index [('Modified', 1)] on cves

2021-01-20 22:24:55,638 - DatabaseIndexer - INFO     - Success to create index [('Published', 1)] on cves

2021-01-20 22:24:55,643 - DatabaseIndexer - INFO     - Success to create index [('last-modified', 1)] on cves

2021-01-20 22:24:55,649 - DatabaseIndexer - INFO     - Success to create index [('cvss', 1)] on cves

2021-01-20 22:24:55,653 - DatabaseIndexer - INFO     - Success to create index [('cvss3', 1)] on cves

2021-01-20 22:24:55,658 - DatabaseIndexer - INFO     - Success to create index [('summary', 'text')] on cves

2021-01-20 22:24:55,665 - DatabaseIndexer - INFO     - Success to create index [('vendors', 1)] on cves

2021-01-20 22:24:55,670 - DatabaseIndexer - INFO     - Success to create index [('products', 1)] on cves

2021-01-20 22:24:55,675 - DatabaseIndexer - INFO     - Success to create index [('vulnerable_product_stems', 1)] on cves

2021-01-20 22:24:55,681 - DatabaseIndexer - INFO     - Success to create index [('vulnerable_configuration_stems', 1)] on cves

Downloading files: 100%|██████████████████████████████████████████████████████████████████████████████████████████████████████| 20/20 [00:12<00:00,  1.64it/s]

Processing downloaded files:  75%|████████████████████████████████████████████████████████████████████▎                      | 15/20 [21:55<12:43, 152.60s/it]

==

Best regards,