Security Basics mailing list archives
Re: General Security audit question
From: Alexandros Papadopoulos <apapadop () cmu edu>
Date: Tue, 7 Jan 2003 13:51:31 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tuesday 07 January 2003 00:11, Dallas Hindle wrote:
Hi I've been asked to perform a security audit on a site (Stock Broker) and to report on all Site, network, server and software issues that I encounter I have a pretty decent idea of what I'm looking for, but if anyone has any links to, or templates of what you would find in a security audit could you please let me know or send me a copy?
Leaving aside people issues (use of passwords, training to avoid social engineering etc), I believe that nessus is what you're after. http://www.nessus.org - -A - -- http://andrew.cmu.edu/~apapadop/pub_key.asc 3DAD 8435 DB52 F17B 640F D78C 8260 0CC1 0B75 8265 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+GyGzgmAMwQt1gmURAsdYAJ9ZbclHkSnH1y9puYyTQEnR8/EoPACfUVPr t4hANlhG7+R/aW5AIrVDwvg= =+6w8 -----END PGP SIGNATURE-----
Current thread:
- General Security audit question Dallas Hindle (Jan 07)
- Re: General Security audit question Alexandros Papadopoulos (Jan 08)
- <Possible follow-ups>
- RE: General Security audit question Rapaille Max (Jan 09)
- RE: General Security audit question Clement Dupuis (Jan 10)
- re: General Security audit question H C (Jan 09)
- Re: General Security audit question David Verty (Jan 13)