|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] What can a Remote Vulnerability Scanner do in Future?
From: Michael Holstein (michael.holstein
csuohio.edu)
Date: Mon Feb 06 2006 - 08:07:48 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
> But Windows XP with sp2 enhance the security configuration and block
> these checking way. So we can not do local check on Windows XP sp2
> except ask customers to do a lot of complex configuration.
Well, with the enhanced security configuration and firewall enabled, the
vulnerability is no longer "remotely exploitable", is it?
If you want to check for local vulnerabilities, you'll to run something
client-side. There's at least a half-dozen ways to do this in a domain
model (eg: GPO or logon scripts) -- but in a standalone environment,
you'll need an agent of some type.
Cheers,
Michael Holstein CISSP GCIA
Cleveland State University
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]