Security Basics mailing list archives

Backported patches - vulnrability scanning

From: "Eric Appelboom" <eric () mweb com>
Date: Fri, 2 Jan 2004 09:43:27 +0200


Hi,

I am looking for a scanner that does not false positive on deamons that
have
Been back ported (patched) and still keep the same banner versions.

How do security teams keep track of what is current or backported as I
am finding it a problem.

One soloution of course is to have a policy to always use current
released builds in 
Production. (cough)

Any other ideas?
Cheers
Eric




---------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Backported patches - vulnrability scanning Eric Appelboom (Jan 02)
- <Possible follow-ups>
- RE: Backported patches - vulnrability scanning Sergile, Alain (ISS Atlanta) (Jan 09)
  - RE: Backported patches - vulnrability scanning Kevin Johnson (Jan 12)