> > ... > > What do you think? > > I fail to understand what it has to do with Nessus > and network security > in general. Broken reverse DNS do exist, but if that > was the only thing > broken out there, the world would be a better place. > ... > -- Renaud
Ahhh, I see. There is a product called Hercules that takes the results of a network security scan and remediates a target based on the targets IP address or host name. If DNS is broken Hercules could apply a fix to the wrong machine... If Hercules applies a fix to the wrong machine, or machines, many bad things could happen... If possible, I would like to get Hercules to work. If not, c'est la vie, and Hercules is toast. Please note that Hercules supports several network security scanners. One of which is Nessus. If Nessus could offer a means of providing more reliable results compared to other scanners (especially on networks with broken DNS), more people would use Nessus (a much better scanner). The sales people behind Hercules stress that STAT is their preferred scanner (even though I don't like it or know of many people who do). So, the importance of indentifying/eliminating broken DNS entries is that patching/remediating machines could be performed without error, or with significantly reduced error. If this can be done, we, as network security people, can reduce/stop the flow of malicious code through automated vulnerability remediation and mitigation. (as I wipe the sweat from my brow...) So, what do you think? -- Jack __________________________________ Do you Yahoo!? The New Yahoo! Shopping - with improved product search http://shopping.yahoo.com
