![]() ![]() It gives me some high-level details about each vulnerability. It also showed me that I’m missing an MS Office service pack. NSS identifies missing service packs and patches, but not just for the operating system. Let’s see what we have:īy clicking on the Vulnerabilities item in the Scanned Computers window, I get more details on the vulnerabilities. It was immediately apparent that I have some vulnerabilities that I need to address. I was quite surprised to see how much information the default scan profile provided. I wanted to know what NSS would tell me “out of the box” so I used the default scan profile as well: Since this was my first attempt, I chose to scan a single computer. I was then presented with the following options: I wanted to jump right into my first scan, so I clicked File and selected New. The right-hand portion is where scan results are displayed. The left portion of the interface is a Tools Explorer. Once you take a closer look, however, it’s much simpler than it first appears: ![]() ![]() Upon running NSS for the first time, you are presented with what initially may seem to be a rather complex interface. NSS has the ability to send administrative alerts via email, so you will need to provide an administrator email address and your mail server name. If you choose Microsoft SQL Server/MSDE as a database then you will receive an additional prompt for the SQL credentials to use to log on to the database. You will also be asked to select either Microsoft Access or Microsoft SQL ServerMSDE as the database back-end for NSS. You will need to specify an account with Domain Administrator privileges which will be used by the LANguard NSS Attendant service to perform scheduled scans. You will, of course, need to read and accept their license agreement and provide your license key. Very little user interaction is required for the installation process. The installation of NSS was quick, easy and painless. This is the point-and-click world, and frankly, if you can’t just pick up a product and start using it, then the interface probably needs some improvement. My intention with this review is to see just how easily one can begin using this product – without reading the manual. Detects Open shares and lists who has access to these shares together with their permissions.Ī complete list of features can be found in the product manual.Detects known CGI, DNS, FTP, Mail, RPC and other vulnerabilities.The identification of rogue services and open TCP and UDP ports.Furthermore, NSS provides patch management capabilities that allow you to centrally download and push out patches to systems with identified vulnerabilities. It produces reports that can be used to assist in the tracking and mitigation of security issues that have been identified. ![]() NSS will scan computers for known vulnerabilities and common misconfigurations and other potential security issues. This is a review of the new release of LANguard Network Security Scanner (GFI LANguard NSS) from GFI. One of the most common methods of auditing the security of computer systems is running a vulnerability scan. This can be accomplished through various means. Organizations must have a continuous awareness of their exposure. In today’s world of pervasive security threats it is ever more critical to know the current security posture of all systems in your environment. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |