TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
it seeems to me to be extraordinarilly reasonable for a scanner to be able as
an option on the scan skip tests not applicable to the OS being scanned.
As an aside I will say that I find most of the presumptions that san "A unix
machine never runs SMBservers" tpo be inapplicable so its really only a
targeted subset of tests that can be skipped, eg i8f nothing answers at any
HTTP port we don;t run the HTTP tests. If its a MAC then Windows specific OS
patches might not be looked at. of course if you mac is runninga virutal PC
maybe you should look at them. Which suggests that perhaps the vendor here,
ISS, shoudl come up with a better answer than run scan A, hand process the
resulsts into several otehr scans to run.
> TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
> [EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
> ----------------------------------------------------------------------------
> "Wheeler, Patrick (ISSAtlanta)" wrote:
> >
> > Thanks for the question. "Divide and conquer" is the best approach - divide
> > up your hosts into host lists based on OS, and then scan the host lists with
> > the appropriate OS-specific policy.
> Does anyone else here think it unreasonable that a scanner detect the OS and
> run tests appropriate for the discovered OS? Could this be an on/off switch
> enabling this behavior for those who like to run all tests against all
> platforms?
> --
> Gary Flynn
> Security Engineer - Technical Services
> James Madison University
> Please R.U.N.S.A.F.E.
> http://www.jmu.edu/computing/info-security/engineering/runsafe.shtml
