I do an automated light nessus scan on all our VPN users as they enter private space.
I cannot rely on having credentials to the user's machine. MS06-040 plugin 21294 has been my test for the last year for users who are likely not-doing auto-updates - and it has proved a reliable test. The test works and invariably they do not have any form of automated patching. I am looking for a more current ( 2007 would be nice ;-) ) Microsoft vuln plugin that achieves the same - without requiring credentials. Any suggestions? James A. Klun _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
