RE: Audit Tools
From: Evan Mann (emann@questinc.org)Date: 08/30/01
- Previous message: Mason, Samuel: "RE: Network Trojan / Malware scanning tools"
- Maybe in reply to: milt@necam.com: "Audit Tools"
- Next in thread: H C: "Fluff was: RE: Audit Tools"
- Reply: H C: "Fluff was: RE: Audit Tools"
- Reply: Marnix Petrarca: "Re: Audit Tools"
- Reply: SysAdmin: "RE: Audit Tools"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <558BEC967F3DD4119779009027FC98F3255DF7@exchange.questinc.org> From: Evan Mann <emann@questinc.org> To: focus-ms@securityfocus.com Subject: RE: Audit Tools Date: Thu, 30 Aug 2001 11:55:47 -0400
Off the topic here, but...
I have yet to personally use Retina, but I tend to prefer 'fluff' when it
comes to security. Example:
BlackICE Defender as a home based firewall reports 99.5% of the time false
positives, showing you port probes and pings as "attacks". Most home
firewall users blast the program for doiung that claiming false sense of
paranoia on home users. Me personally? I liked it (when I used BlackICE,
I've since switched to Tiny Personal Firewall). For someone who knows what
they're doing and has some form of a clue about security, all those false
positives and fluff are good indicators of what is happening to your system
and what it's doing to react. Even if you don't need to know it, and it
takes extra time to sift through, I wouldn't call a product bad or not
effective just because it wastes a little bit of my time.
-----Original Message-----
From: Tiburon FC [mailto:tiburon_fc@hotmail.com]
Sent: Wednesday, August 29, 2001 7:02 PM
To: focus-ms@securityfocus.com
Cc: Brian.Carvalho@verizon.net
Subject: RE: Audit Tools
Retina is full of false positives. Many of the "Security Risks" it
identifies, requires sifting through too much fluff to actually get to the
items that are pertinent. The reporting is far from "Top Notch".
Solarwinds anyone? :)
- Tib
Jack of all trades, Master of none...
-----Original Message-----
From: Brian Carvalho [mailto:Brian.Carvalho@verizon.net]
Sent: Wednesday, August 29, 2001 10:28 AM
To: focus-ms@securityfocus.com
Subject: Re: Audit Tools
Personally, I like the Retina Security Analyzer by eEye...
It will do most of what you are looking for and the report
it gives you is top notch. Not to mention that it will make
certain recommendations where it finds security risks.
----- Original Message -----
From: <milt@necam.com>
To: <focus-ms@securityfocus.com>
Sent: Wednesday, August 29, 2001 11:57 AM
Subject: Audit Tools
>Lets assume our company takes over another ... actually taking place ...
our
>company wants to audit the other company's network ... at this point we
are
>told it is NT ... not told too much else like what version, service packs,
>controllers, backups, etc. Is there an audit tool that will tell us such
things
>as security holes, number of users, groups, rights, etc.? I need a
'all-in-one'
>'sweeper package'... is there such a thing? ... what would you recommen
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
- Previous message: Mason, Samuel: "RE: Network Trojan / Malware scanning tools"
- Maybe in reply to: milt@necam.com: "Audit Tools"
- Next in thread: H C: "Fluff was: RE: Audit Tools"
- Reply: H C: "Fluff was: RE: Audit Tools"
- Reply: Marnix Petrarca: "Re: Audit Tools"
- Reply: SysAdmin: "RE: Audit Tools"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
