Full Disclosure mailing list archives

RE: Top 15 Reasons Why Admins Use Security Scan ners

From: Ron DuFresne <dufresne () winternet com>
Date: Fri, 30 Apr 2004 11:40:02 -0500 (CDT)

On Wed, 28 Apr 2004, Harlan Carvey wrote:


        [SNIP]


But there's also another way to look at the original
comment...security is a process.  Running a
vulnerability scanner isn't a process...it's a
point-in-time check, a snapshot.



Ad it's not in and of itself completely that;  it's a number of potentials
that need to be hand checked for accuracy.  Scanners are not a do all tool
of complete trust, they are a tool to provide pointers, at a point-in-time
for sure.


Thanks,

Ron DuFresne
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

RE: Top 15 Reasons Why Admins Use Security Scan ners Starford, Christopher D. (Apr 28)
- RE: Top 15 Reasons Why Admins Use Security Scan ners Harlan Carvey (Apr 28)
  - RE: Top 15 Reasons Why Admins Use Security Scan ners Ron DuFresne (Apr 30)
- RE: Top 15 Reasons Why Admins Use Security Scan ners Ron DuFresne (Apr 30)
- <Possible follow-ups>
- RE: Top 15 Reasons Why Admins Use Security Scan ners Stuart Fox (DSL AK) (Apr 28)
  - RE: Top 15 Reasons Why Admins Use Security Scan ners Harlan Carvey (Apr 28)
    - RE: Top 15 Reasons Why Admins Use Security Scan ners Frank Knobbe (Apr 28)
  - Re: Top 15 Reasons Why Admins Use Security Scan ners Jeremiah Cornelius (Apr 28)
- RE: Top 15 Reasons Why Admins Use Security Scan ners Vanish Pattni (DSL AK) (Apr 28)