hi ya
salix seems to have 69 remote exploits included in its tools..
but think there were over 700(?) rootkits ???
and countless xx,000 exploits...
<rant>
doing a portscan like nessus/nmap is sorta worthless ???
- it doesnt matter that port 25 is open on your mail server
- it doesnt matter that port 80 is open on your web server
- what does matter is that the version running on port 25/80
(any other open ports) is secured and patched apps
</rant>
c ya
alvin
http://www.Linux-Sec.net/Audit .. more audit stuff and methodology to
do audits ...
On Wed, 24 Apr 2002, John wrote:
> NSAT and RACCESS are very interesting. I think Nessus is the best out of all
> the listed scanners below.
>
> Freeware
> http://www.nessus.org/
> http://www.gfi.com/lannetscan/index.htm
> http://mixter.warrior2k.com/nsat-1.41.tar.gz
> http://www.salix.org/raccess
>
> Commercial
> http://www.eeye.com/html/Products/Retina/index.html
> http://www.iss.net/products_services/enterprise_protection/vulnerability_ass
> essment/index.php
>
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
For Account Management (unsubscribe, get/change password, etc) Please go to:
http://lists.gnac.net/mailman/listinfo/firewalls
