PaulDotCom mailing list archives

Re: Vulnerability Scanners

From: Herndon Elliott <alabamatoy () gmail com>
Date: Wed, 1 Sep 2010 07:14:54 -0500

Date: Tue, 31 Aug 2010 10:02:26 -0600
From: Andrew Anderson <andycapp92 () gmail com>
Subject: vulnerability scanners

...

Does anyone have any suggestions for a  third contender for my list?

gold disc and SRRs.  http://iase.disa.mil/stigs/index.html and
http://iase.disa.mil/stigs/faq.html

Pros: Free, updated, widely used throughout DoD, produce useable results,
all moving slowly to XML basis and VMS output
Cons: Clunky, quirky (but pretty effective), requires DoD PKI cert for
access, some of the checks are manual/interview

Caution, do NOT use the "remediate" button in gold disc or you *will* brick
the box!

Herndon Elliott
Madison, Al
"Fathom the odd hypocrisy that Obama wants every citizen to prove they are
insured, but people don't have to prove they are citizens". ~ Ben Stein

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com

Current thread:

vulnerability scanners Andrew Anderson (Aug 31)
- Re: vulnerability scanners Butturini, Russell (Aug 31)
  - Re: vulnerability scanners Michael Douglas (Aug 31)
- Re: vulnerability scanners Paul Asadoorian (Aug 31)
  - Re: vulnerability scanners Daniel (Aug 31)
  - Re: vulnerability scanners Albert R. Campa (Aug 31)
    - Re: vulnerability scanners Francois Lachance (Sep 02)
- Re: vulnerability scanners Michael Dickey (Aug 31)
- <Possible follow-ups>
- Re: Vulnerability Scanners Herndon Elliott (Sep 01)
  - Re: Vulnerability Scanners Albert R. Campa (Sep 01)