[unisog] OS Vuln Scanners

BACHAND, Dave (Info. Tech. Services) BachandD at easternct.edu
Wed Apr 23 14:16:36 GMT 2008


We use Nessus to scan the entire university frequently.  The freeware
version is the same as the paid commercial version, except that the
signatures are delayed on the free one.  All that said, it's an
extremely useful tool, and is not very hard to use.

One thing I like is the "safe checks" flag.  IE for Internet facing
services, we probe it more harshly, whereas for more protected services
we can scale back the aggressiveness.  But beware that "safe checks off"
can and will wax a weakly configured system. :-)

Dave Bachand 
Data Network Manager 
Information Technology Services 
Eastern Connecticut State University 
83 Windham Street 
Willimantic, CT 
Tel. (860)465-5376 

-----Original Message-----
From: unisog-bounces at lists.dshield.org
[mailto:unisog-bounces at lists.dshield.org] On Behalf Of Kevin Lanning
Sent: Friday, April 18, 2008 11:49 AM
To: UNIversity Security Operations Group
Subject: [unisog] OS Vuln Scanners

I'd appreciate info from list members regarding best products in this
category from your real life experience as a security professional in
higher ed.

Kevin Lanning, MSIS GSEC CISSP
Information Security
UNC-Chapel Hill
ITS Manning, # 2810
lanning at unc
unisog mailing list
unisog at lists.dshield.org

More information about the unisog mailing list