>Take at look at ISS's Internet Security Scanner or Network Associates'
Cybercop Scanner, both are go >od but ISS's reporting is a little better.
Internet Scanner 6.0 from ISS was recently released. They added several
more reports, as well as simplified the GUI quite a bit with setting the
policy for what to check. One nice feature is that it's integrated with
their Database Scanner, so when it discovers MS SQl or Oracle db on your
network, it can pop up DB Scanner to perform an assessment on that as
well, an important area missing in CyberCop.
Another nice feature in 6.0 is its autoupdate X-Press capability where it
can get to iss's website for new security checks, download them, and load
them without updating the entire scanner anymore.
>From what I understand, x-press uses dynamically loaded modules that has
a more efficient and more secure interface than cybercop's command line
calls to execute each check. On a test network of 200 machines, you can
see a pretty big difference in performance.
CyberCop may have slowed since all the SNI security experts that worked
on it have apparantly gone off to do another startup. Not sure when a new
release is coming, but it's been awhile.
M.C.
---
Matt Conrad
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
