Re: NESSUS

[Josh Richard <jrichar4 () D UMN EDU>]

Peter Moody wrote:

> Phillip G Deneault wrote:
>
>
> For the folks who are using a solution like this, can you tell me how
> Service Pack 2 has affected its usability?  Common sense would say
> that a host-based firewall turned on by default on 80% of my desktop
> machines would make any significant purchases in desktop scanning sw/hw
> a waste.
>
> But I could be wrong, it's happened before.
>
> Regards,
> -Peter
What do you do about the other 20%?  SP2 does return ok when scanned.
That is an issue IF the firewall is enabled and windows file sharing is
properly configured (note the big IF).  I agree with your concern,
perhaps this may help...

Some stats for our nessus scans in our residence halls for this year:

Start of fall semester:

~25%  Vulnerable to > one of nessus 12209;11808;11835;12055;12054

Start of sprint semester:

~15% Vulnerable to > one of nessus 12209;11808;11835;12055;12054

~ 3000 residence hall machines.

Also we scan continuously and kick out machines which are not in
compliance.  Since figuring out those stats may require differential
equations, I can just say it happens frequently (a few machines per day). ;)

It would be nice if everyone would install and run XP SP2, but many do
not.
Also, some students are running Windows 2000 or Win ME 98 or 95....argh.

Therefore, anything we can do to prevent possible exposure patching
issues is appreciated by users who are patched and responsible.

I see a scanning system using nessus to be valuable for at least 2 more
years if history serves.

Regards,

Josh Richard
University of Minnesota Duluth

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/groups/.