Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > ISS> 1999-q4

ISS/XForce Archives: RE: Multiple Security Engineers Sharing In

RE: Multiple Security Engineers Sharing Internet Scanner

Subject: RE: Multiple Security Engineers Sharing Internet Scanner
From: Brian Laing (blaingiss.net)
Date: Wed Dec 08 1999 - 05:33:17 CST

Next message: Raymond Cheung: "Re: RealSecure consoles & multiple users"
Previous message: X-Force: "ISSalert: ISS Security Advisory: Buffer Overflow in Solaris Snoop"
In reply to: Daniel B. Garrie: "Re: Multiple Security Engineers Sharing Internet Scanner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
majordomoiss.net Contact issforum-owneriss.net for help with any problems!
----------------------------------------------------------------------------

Daniel,

The first thing is use the website to limit who can scan what IP's and from
where. The second thing is to be aware of, is that depending on your
network typology you may run into problems where filtering devices limit the
effectifiness of the scan. Keep in mind however the scan is launched by the
website to it is where the webserver is located not where the person
requesting the scan is.
If you do run into filtering devices, more than likely you will still be
able to connect to the common ports and run tests against those ports.

Brian

-----Original Message-----
From: Daniel B. Garrie [mailto:dgarriecs.brandeis.edu]
Sent: Monday, December 06, 1999 11:10 PM
To: Gary Flynn
Cc: blaingiss.net; issforumiss.net
Subject: Re: Multiple Security Engineers Sharing Internet Scanner

How would you go about implmenting such a structure given scanning when
people can plug in from ports perhaps in the library or run an internal
proxy server? What would be the point fo conducting such a scan?

daniel
ll the IP
names are assigned static.

On Fri, 3 Dec 1999, Gary Flynn
wrote:

>
> TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message
to
> majordomoiss.net Contact issforum-owneriss.net for help with any
problems!
> --------------------------------------------------------------------------

--
>
> Brian Laing wrote:
> >
> >         Something I have done in the past is to actually use a website
to
> do
> > everything.  The website can be fully secured, and even use something
like
> > secure id or smart cards for authentication.  You then create a website
 that
> > will generate commandline scans and schedule them.
>
> Brian,
>
> What are the licensing implications of this? I'm planning a similar
> architecture for our campus.
>
> http://www.jmu.edu/info-security/engineering/proj/idr/cvas.htm
>
> thanks,
>
> Gary Flynn
> Security Engineer
> James Madison University
>
Daniel B. Garrie
email:dgarriebrandeis.edu
icq#:52108157
aol:dbgsmooth

Next message: Raymond Cheung: "Re: RealSecure consoles & multiple users"
Previous message: X-Force: "ISSalert: ISS Security Advisory: Buffer Overflow in Solaris Snoop"
In reply to: Daniel B. Garrie: "Re: Multiple Security Engineers Sharing Internet Scanner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b27 : Thu Dec 09 1999 - 16:10:15 CST