Lizenzinformation

Lizenzinformation für den Greenbone Security Feed

Der Greenbone Security Feed besteht aus vier Teilen:

  1. Vulnerability Tests
  2. SCAP-Daten
  3. CERT-Daten
  4. Datenobjekte, die über den Feed verteilt werden (Scan-Konfigurationen, Compliance Richtlinien, Portlisten, Berichtformate)
Mit dem Kauf einer Subscription von Greenbone Networks erkennen Sie unsere Lizenzbedingungen wie unten zitiert an.
Außerdem erhalten Sie Zugang zu unserem Service Level Agreement (SLA), zum Beispiel dem „Greenbone-Support“.

Hier erfahren Sie mehr zu den Lizenzen der vier Komponenten und von Greenbone OS:

Untenstehend finden Sie den Inhalt der Datei „LICENSE“, welche grundsätzlich als Teil des Greenbone Security Feeds mitgeliefert wird und bei regulärer Installation unter „/opt/greenbone/feed/plugins/“ zu finden ist. Die begleitenden Dateien „COPYING.GPLv2“ und „COPYING.files“ sind unten im direkten Download verfügbar.

License information for Greenbone Security Feed
-----------------------------------------------

The effective license for the Network Vulnerability Tests 
(NVTs) of the Greenbone Security Feed is the 
GNU General Public License Version 2 (GNU GPLv2).

The separate signatures files (files ending with ".asc")
and the checksum files are proprietary datafiles of Greenbone
Networks GmbH. These files prove that the corresponding NVTs
have undergone the Greenbone quality assurance process and
therefore are eligible for our customer support. Also, the
signature files prove that the corresponding NVTs have not
been compromised by a third party.

Only one set of the signature files is permitted per
Greenbone Subscription per Greenbone Security Manager appliance.

The majority of NVT's is licensed under "GNU GPLv2 or any
later version" (GNU GPLv2+). There are, however, several
NVT's licensed under "GNU GPLv2" and "GPLv2 or GPLv3".
You will find the actual license of each file in the
header part.

GPLv2: See file LICENSE.GPLv2

For more information please contact Greenbone Networks GmbH:
https://www.greenbone.net or info@greenbone.net
  • LICENSE: Lizenzinformationen für den Greenbone Security Feed
  • LICENSE.GPLv2: GNU General Public License version 2

Untenstehend finden Sie den Inhalt der Datei „COPYING“, welche grundsätzlich als Teil des Greenbone Security Feeds mitgeliefert wird und bei regulärer Installation unter „/opt/greenbone/feed/scap-data/“ zu finden ist.

This directory contains SCAP data provided by The MITRE Corporation and the
National Institute of Standards and Technology (NIST).

CVE is a publicly available and free to use list or dictionary of standardized
identifiers for common computer vulnerabilities and exposures. The master copy
of the CVE List is maintained for the community by MITRE. You may download the
CVE List, copy it, redistribute it, reference it, and analyze it, provided you
do not modify CVE itself as per the Terms of Use listed at
http://cve.mitre.org/about/termsofuse.html. For more details, visit
http://cve.mitre.org/.

CPE is a structured naming scheme for information technology systems, software,
and packages. This directory contains a copy of the official CPE Product
Dictionary. The dictionary provides an agreed upon list of official CPE names.
The dictionary is provided in XML format and is available to the general
public. The CPE Dictionary hosted and maintained at NIST may be used by
nongovernmental organizations on a voluntary basis and is not subject to
copyright in the United States. Attribution would, however, be appreciated by
NIST.  For more details, visit http://nvd.nist.gov/cpe.cfm.

OVAL is an information security community effort to standardize how to assess
and report upon the machine state of computer systems. It is international in
scope and free for public use. The OVAL Language and any resulting OVAL content
based upon the language that is stored in the OVAL Repository are free to use
by any organization or individual for any research, development, and/or
commercial purposes, per the Terms of Use listed at
http://oval.mitre.org/about/termsofuse.html. For more details, visit
http://oval.mitre.org/.

Untenstehend finden Sie den Inhalt der Datei „COPYING“, welche grundsätzlich als Teil des Greenbone Security Feeds mitgeliefert wird und bei regulärer Installation unter „/opt/greenbone/feed/cert-data/“ zu finden ist.

This directory contains advisory data from various CERTs (Computer Emergency
Response Team). Below is a list of the license notices from each CERT.

CERT-Bund (files CB-K*.xml)
---------------------------

This directory contains advisory data provided by the BSI. You are given the
non-exclusive, royalty-free license to download, copy, reference, analyze
and redistribute it. This data must not be modified and BSI's copyright
designation and license have to be reproduced in any copy.

DFN-CERT (files dfn-cert-*.xml)
-------------------------------

This directory contains advisory data provided by DFN-CERT Services GmbH
(DFN-CERT). This data is provided to allow a mapping between the CVE
dictionary and advisories as provided by DFN-CERT. You are given the
non-exclusive, royalty-free license to download it, copy it, redistribute it,
as the original mapping semantics are kept intact. DFN-CERT's copyright
designation and license have to be reproduced in any copy.

Untenstehend finden Sie den Inhalt der Datei „LICENSE“, welche grundsätzlich als Teil des Greenbone Security Feeds mitgeliefert wird.

License information for Greenbone Security Feed
-----------------------------------------------

The effective license for the Greenbone Vulnerability Manager 
daemon (gvmd) data objects of the Greenbone Security Feed is the 
GNU Affero General Public License Version 3 (GNU AGPLv3).

The separate signatures files (files ending with ".asc")
and the checksum files are proprietary datafiles of Greenbone
Networks GmbH. These files prove that the corresponding objects
have undergone the Greenbone quality assurance process and
therefore are eligible for our customer support. Also, the
signature files prove that the corresponding objects have not
been compromised by a third party.

Only one set of the signature files is permitted per
Greenbone Subscription per Greenbone Security Manager appliance.

AGPLv3: See file LICENSE.AGPLv3

For more information please contact Greenbone Networks GmbH:
https://www.greenbone.net or info@greenbone.net

Untenstehend finden Sie den Inhalt der Datei COPYING.GOS, welche bei Greenbone OS als Datei „/usr/share/doc/gsm-info/COPYING.GOS“ zu finden ist.

Greenbone OS consists of a number of software packages, essentially based
on Debian GNU/Linux. You will find the license information for any package
under /usr/share/doc/PACKAGENAME/copyright. In essence you are permitted
to use the product for any purpose, but for redistribution you have
to consider the respective licenses conditions.

You are, however, not permitted to redistribute the Greenbone Security Feed
access key which is part of a Greenbone Subscription. The key is located under
"/etc/gvm/". Customers who entered into a service Level Agreement are not
allowed to use the access key with more than one scan engine. In case of
non-compliance we reserve the right to terminate the Service Level Agreement.

For binaries that you receive from Greenbone that are licensed under any
version of the GNU General Public License (GPL), the GNU LGPL or GNU Affero
General Public License (AGPL), you can receive a complete machine-readable
copy of the source code by sending a written request to:

Greenbone Networks GmbH
Neumarkt 12
49074 Osnabrück
Germany

Your request should include: (i) the name of the covered binary, (ii) the
version number of the Greenbone product containing the covered binary,
(iii) your name, (iv) your company name (if applicable) and (v) your
return mailing and email address (if available).

We may charge you a nominal fee to cover the cost of the media and
distribution.

Your request must be sent within three (3) years of the date you received
the GPL or LGPL covered code.

For your convenience, some or all of the source code may also be found at:

https://docs.greenbone.net/index.html#source_code_documentation

Also for convenience, the source codes for all the operating system base
modules are generally available for immediate download.

You will find the license information for the Greenbone Security Feed as
file LICENSE under "/opt/greenbone/feed/plugins/", and as file LICENSE
under "/opt/greenbone/feed/gvmd/".

Verwendung von Marken

„Greenbone“ ist eine Marke der Greenbone Networks GmbH. Die Lizenz der Software unter einer freien Open Source Lizenz impliziert keine Marken-Lizenz. Daher verbleiben alle Rechte an dieser Marke bei uns.

Open Source

Wir glauben an das Open-Source-Konzept und liefern auch selbst wesentliche Beiträge zu den Open-Source-Gemeinschaften.
 
Daher ist auch die Greenbone-Technologie transparent und jeder Interessierte kann ein Audit des Quelltexts vornehmen.