Hello list, this is my first question to the list, so please be gentle.
One of my customers want's to improve security in his DMZ. He needs vulnerability scanning, integritiy checking and intrusion detection. For network based vulnerability scanning he uses a combination of free software (nessus) and a comercial solution. But he's looking for hostbased vulnerability scanning too. Environement: Mix of Windows and Unix servers I've found the following combinations: Case A: ISS System Scanner (Does scanning and integrity checking as far as I know) ISS Real Secure Server Sensor (for intrusion detection) could be handled from a single console Case B: Tripwire (integrity checking) ISS Real Secure Server Sensor (for intrusion detection, and, as for informations from ISS, does vulnerability scanning in a future version) needs 2 consoles So here I need your advice. Which case would you choose, and why. Or please provide a complete knew solution. Thanks for any answeres and Good bless you
