Hosting Provided By

Re: Distributed Vulnerability Scanners

From: Renaud Deraison <deraison(at)nessus.org>
Date: Fri Mar 07 2003 - 05:18:42 EST

(since a lot of people are doing shameless plugs, I thought I'd jump in)

On Thu, Mar 06, 2003 at 03:33:38PM -0800, Kohlenberg, Toby wrote:
> I've heard a couple people mention scanning services that offer

This is exactly what you'll get with Lightning (distributed Nessus), from Tenable Network Security (www.tenablesecurity.com)

Each proxy defines which Nessus is in charge of which subnet (you can have multiple Nessuses by subnet, they'll split the work among them)
Proxies can be chained, so you can go everywhere in your network (if you have NAT within NAT for instance).
Plugins updates are automatically pushed to the nessusds - no need for them to have internet connectivity. If you want a solution which is completely disconnected from the internet, you can manually transfer the new plugins to the top proxy, and they'll be pushed from there.

And in addition to that, you also get IDS correlation.

Renaud

-- 
Renaud Deraison
The Nessus Project
http://www.nessus.org

----------------------------------------------------------------------------

Are your vulnerability scans producing just another report?
Manage the entire remediation process with StillSecure VAM's
Vulnerability Repair Workflow.
Download a free 15-day trial:
http://www2.stillsecure.com/download/sf_vuln_list.html

Received on Fri Mar 7 15:02:10 2003

This message: [ Message body ]
Next message: sacha.faust.bourque(at)ca.pwcglobal.com: "Re: Distributed Vulnerability Scanners"
Previous message: cdowns: "Re: Distributed Vulnerability Scanners"
In reply to: Kohlenberg, Toby: "RE: Distributed Vulnerability Scanners"
In reply to Rapaille Max: "RE: Distributed Vulnerability Scanners"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:33 EDT