Re: ideal OS distro for network scanning?

[Pete Herzog <lists () isecom org>]

> Well the most secure OS is going to be the one that you patch and update

Actually, the most secure OS is the one that has no services (and 
definitely not something I would recommend for an attack server by the 
way) and really it has nothing to do with patching.  Relying on patching 
to keep your client's data safe is ignoring that zero-days exist and not 
being prepared for the unexpected.  More actually, security for an 
attack server is counter-intuitive as it adds baggage to the speed, 
accuracy, and reliability of each packet sent and received.  It's not a 
good idea to have any firewall or such rules running on the attack 
server itself as you will limit yourself.  Like Hollywood teaches 
up-and-coming starlets, "Don't invite but don't restrict." ;)

Sincerely,
-pete.
www.isecom.org, www.osstmm.org, www.opst.org, www.isestorm.org

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------