Re: Tool for analysing web server
From: Bjorn Randell (Bjorn_at_AlphaMale.me.uk)
Date: 08/28/03
- Next message: Michael Scheidell: "Re: Great Blackout of 2003 Caused by MSBlast Computer Worm?"
- Previous message: Lelo: "Re: how to deploy X509 certificates to 300 remote hosts?"
- In reply to: Erik Mannergren: "Tool for analysing web server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 28 Aug 2003 17:35:28 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
"Erik Mannergren" <d99manne@dtek.chalmers.se> wrote in message
news:Pine.GSO.4.10.10308280924370.12127-100000@poli.dtek.chalmers.se...
>
> I am about to analyze the security of a server running Microsoft
> Information Services 5.0 and Microsoft SQL Server 7.0. I
> havent yet decided how to do the analysis but it seems a waste of time
> just to pick specific known security flaws and manually test if they
> have been patched. Doesn't Microsoft provide patches for all known
> security flaws?
>
> So in my opinion the security analysis should instead focus on the servers
> patching and configuration. Is there any free tools out there that can
> help me verify the patching and configuration on the server.
>
> I have so fare found the these tools: Nessus, Nikto, SARA, SATAN. Does
> anyone have experience of them. Are they good?
>
> Thanks!
I tried out Typhoon III and found it quite useful, I'm sure you have similar
results :)
- --
Regards,
Bjorn Randell
Bjorn@AlphaMale.me.uk or ICQ# 137732
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQA/AwUBP04vTjku4VnVk4KUEQIwzACeKOViPDLSMtJEe+1NN3mxq1Wg0fcAn2IK
Ynt1hf19U1gILGX8eA2hELKj
=9gc9
-----END PGP SIGNATURE-----
- Next message: Michael Scheidell: "Re: Great Blackout of 2003 Caused by MSBlast Computer Worm?"
- Previous message: Lelo: "Re: how to deploy X509 certificates to 300 remote hosts?"
- In reply to: Erik Mannergren: "Tool for analysing web server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
