Firewall Wizards mailing list archives
RE: Home Environment Cisco
From: "Noonan, Wesley" <Wesley_Noonan () bmc com>
Date: Sat, 31 May 2003 09:26:07 -0500
I'm not questioning their quality. I'm not questioning their value or their use as tools. I use them both, extensively. As for howingodsname, I just read someone say "I ran nmap on my NAT box and it found nothing, what more can I want". As you said, tools do not convey expertise, and in this case it clearly gave the user a very, very false sense of security. This is a bad thing, and it doesn't matter if fydor wrote it or not, if it's open source or if it will fix my coffee in the morning. There is much more to a security audit than nmap or nessus. Unfortunately it seems there is a growing group of security ignorant folks who claim to be security experts that are running just those tools and proclaiming security panacea. That is howingodsname I throw them into the soup. Wes Noonan, MCSE/CCNA/CCDA/NNCSS/Security+ Senior QA Rep. BMC Software, Inc. (713) 918-2412 wnoonan () bmc com http://www.bmc.com
-----Original Message----- From: Jeremiah Cornelius [mailto:jeremiah () nur net] Sent: Friday, May 30, 2003 17:40 To: firewall-wizards () honor icsalabs com Subject: Re: [fw-wiz] Home Environment Cisco <snip>Sometimes I think that GRC, NMap and Nessus are the worst security toolsoutthere. People run them, get negatives and think "wow, I must really bedoinggreat". Unfortunately it seems that a lot of folks seem to think that as long as GRC "Shields UP" says everything looks good, it is.</snip> Howingodsname do you casually throw quality open source tools like Nessus and nmap into the soup with ShieldsUp? Gibson is an excitable, borderline crackpot, and ShieldsUp is good for making people little more than aware, if not nervous. With nmap, Fydor has advanced the state-of-the-art. Many times! Of course, a good tool does not convey expertise to its user... _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- RE: Home Environment Cisco, (continued)
- RE: Home Environment Cisco Loomis, Rip (May 30)
- RE: Home Environment Cisco R. DuFresne (May 30)
- RE: Home Environment Cisco James Baumgardner (May 30)
- RE: Home Environment Cisco Noonan, Wesley (May 30)
- Re: Home Environment Cisco Jeremiah Cornelius (May 31)
- Re: Home Environment Cisco Brian Ford (May 31)
- Re: Home Environment Cisco Brian Ford (May 31)
- Re: Home Environment Cisco Brian Ford (May 31)
- Re: Home Environment Cisco Brian Ford (May 31)
- Re: Home Environment Cisco Tina Bird (May 31)
- RE: Home Environment Cisco Noonan, Wesley (May 31)
- FW: Home Environment Cisco Noonan, Wesley (May 31)
- RE: Home Environment Cisco Loomis, Rip (May 30)