On Thu Apr 20 2006 at 19:05, -soundlux- wrote: > My research indicated that the threat was greatest from insiders, so > my suggested approach was to require that the scans be ran from inside > the network ( specifically behind the firewall.)
You are right, IMHO, for several reasons. > Other will argue that the scans should be ran from outside the > firewall since the threats are mainly external. That's useless. > A department that took the last approach (running the scans from > outside the firewall), reported the Nessus scan results with No > vulnerabilities. Not very surprising. > My Question is, if the scans are run from ouside the network, should > the firewall (and other security appliances) be configured in a > particular way as not to distort the scans. You can, but I think it is not worth the trouble. If you want to only address external threats, you should scan the public machines from inside. _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
