Security Basics mailing list archives

Re: General Security audit question

From: Alexandros Papadopoulos <apapadop () cmu edu>
Date: Tue, 7 Jan 2003 13:51:31 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tuesday 07 January 2003 00:11, Dallas Hindle wrote:

Hi
 
I've been asked to perform a security audit on a site (Stock Broker)
and to report on all Site, network, server and software issues that I
encounter
 
I have a pretty decent idea of what I'm looking for, but if anyone
has any links to, or templates of what you would find in a security
audit could you please let me know or send me a copy?


Leaving aside people issues (use of passwords, training to avoid social 
engineering etc), I believe that nessus is what you're after.

http://www.nessus.org

- -A
- -- 
http://andrew.cmu.edu/~apapadop/pub_key.asc
3DAD 8435 DB52 F17B 640F  D78C 8260 0CC1 0B75 8265
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQE+GyGzgmAMwQt1gmURAsdYAJ9ZbclHkSnH1y9puYyTQEnR8/EoPACfUVPr
t4hANlhG7+R/aW5AIrVDwvg=
=+6w8
-----END PGP SIGNATURE-----

Current thread:

General Security audit question Dallas Hindle (Jan 07)
- Re: General Security audit question Alexandros Papadopoulos (Jan 08)
- <Possible follow-ups>
- RE: General Security audit question Rapaille Max (Jan 09)
  - RE: General Security audit question Clement Dupuis (Jan 10)
- re: General Security audit question H C (Jan 09)
- Re: General Security audit question David Verty (Jan 13)