Educause Security Discussion mailing list archives

Re: Vulnerability scan systems

From: "Penn, Blake" <pennb () UWW EDU>
Date: Tue, 17 Jan 2006 09:28:15 -0600

We are using GFI Languard and nessus together.  Languard mostly for the
workstations and nessus for the servers/critical infrastructure.

Note that version 7 of Languard and version 3 of nessus have some very
significant improvements over the previous versions (features in the case of
Languard, and performance in the case of nessus).  We have nessus 3 running
on FreeBSD and it is just plain FAST!

__________________________________
Blake Penn, CISSP
Information Security Officer
University of Wisconsin-Whitewater
(p) 262-472-5513 (f) 262-472-1285
e-mail: pennb () uww edu


-----Original Message-----
From: Chad McDonald [mailto:chad.mcdonald () GCSU EDU]
Sent: Monday, January 16, 2006 3:10 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Vulnerability scan systems

Bret R Blackman wrote:


We are currently evaluating different products (Qualys, Foundstone,
Nessus, etc) for performing vulnerability scans on our critical
systems.  What are other Universities using?

Thanks

Bret R. Blackman
University of Nebraska at Omaha
Director of Administrative Information Services Information Technology
Services, EAB 110 bblackma () mail unomaha edu


We have used GFI Languard in the past but switched to Nessus about 2 years
ago.

Chad McDonald, CISSP
Chief Information Security Officer
Georgia College & State University

Attachment: smime.p7s
Description:

Current thread:

Vulnerability scan systems Bret R Blackman (Jan 16)
- <Possible follow-ups>
- Re: Vulnerability scan systems Chad McDonald (Jan 16)
- Re: Vulnerability scan systems Penn, Blake (Jan 17)