TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
To get known with the product and use it at 200% there are courses for. If
you look at all technical manuals (in pdf format) free downloadable from the
web you will learn a lot and they are well written.
If you know what you're doing it is easy to secure a wintel box (start with
installing/using SystemScanner Agent on it). I use a 2k professional in the
classroom and no class managed to break in : ) (I challenged them because
the exams are on it).
For me it is difficult to secure a Unix box, if i look at the number of
vulnerabilities and settings wintel<=>unix/linux it all depends with which
platform you are used to work all day long.
Why would you use pcanywhere or terminal server ? You can have up to 3 fully
consoles and on top of that remote control through a stripped down
apachewebserver.
-----Original Message-----
From: tai [mailto:[EMAIL PROTECTED]]
Sent: zondag 15 juli 2001 1:56
To: [EMAIL PROTECTED]
Subject: RE: Quick question about system scanner
TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any
problems!
----------------------------------------------------------------------------
All,
Let me first say that I do NOT have practical experience with
System Scanner. I am new to the team at work. One of the biggest problems
we have with it is that it is all Windows based, we are having a LOT of
problems trying to get it into the production environment (because the data
center folks DO NOT WANT TO SUPPORT WINDOWS BASED SOLUTIONS). I realize
that many places run NT as desktops, and as such, it is a good idea to have
consoles running on win32 systems. I have no problems with it.
My problem is that ISS apparently threw away all the code/design
that they had previously and decided to force all their customers into a
(in my opinion as a "security expert", or a information security
professional in any case) a lousy solution (very much my opinion,
definitely speaking as a representative of my company). It is my
considered opinion that windows is an extremely difficult platform to
secure, if that is possible. And you want me to run a security solution on
it? If it were not for the economic downturn, we would have went with
another solution.
Now, I do not have a good understanding of the System Scanner
architecture, only what I have been briefed on by my team. However, what
was described sounded like a horrible dream. Of course, once I get my
hands on it, and get to muck around in it, my opinion may change. *shrug*
Now, pcAnywhere was never really considered a solution. However, I
am kinda pissed that we have to buy extra Terminal Server type licenses.
My other question is regarding this "Vista" web server. I was told
it is actually the Apache webserver. Why did ISS renamed it "Vista"? That
smells like its a stupid marketing decision. I always believe in giving
credit where credit is due. Wish others acknowledge the contributions that
they got.
Anyway, I am going to do my best to make the whole thing work at
work. I feel like I'm driving a car without brakes, but I need to feed my
family. I hope the recent discussion here made ISS aware that there are
users other there who want to use it under Unix, and prefers not to pay the
Microsoft Tax.
And thanx to those who suggested SMS, but SMS sucks too :) I don't
really prefer java either. *shrug* It depends on whether ISS wants to
make their product into a market leader piece of software that works to
their customers' benefit (making us change our security architecture is not
to our benefit *hint*)
-Tai
--
http://philip.greenspun.com/bg/
http://www.vcnet.com/bms/features/serendipities.html
http://www2.hunter.com/~skh/humor/admin-horror.html
http://www.despair.com/demotivators/cluelessness.html
