Briggs,
To scan for certain patches, the scanner may need administrator account and password of the box you are scanning. Without this, you may only be looking at the network vulnerabilities, not the operating system.
Are you scanning through the SiteProtector Console or through the Scanner Program applet?
Sam Junkin
NetSec
Security Engineer, CISSP
Email [EMAIL PROTECTED]
Work 703.788.6221
www.netsec.net
Managed Security | Business Relevance
This electronic message contains information from NetSec or its affiliates, which may be confidential, proprietary or otherwise protected from disclosure. The information is for use solely by the recipient(s) named above for the purposes intended by the originator. If you are not an intended recipient, be aware that any review, disclosure, copying, distribution or use of this transmission or its contents is prohibited. If you have received this transmission in error, please notify us immediately by telephone at (703) 561-0420, or by electronic mail at [EMAIL PROTECTED]
-----Original Message-----
From: Gerard Sam-FMAT01 [mailto:[EMAIL PROTECTED]]
Sent: Monday, October 13, 2003 8:51 AM
To: 'Briggs, Jr., Russell B.'; [EMAIL PROTECTED]
Subject: RE: [ISSForum] No Vulnerabilities Discovered
Briggs,
This may not be your problem but it is a known feature of IS all versions.
If the last octet is '0' [zero] or '255' IS will not scan the IP. It will
show queued but will never actually scan the device. This is due to network
constraints.
Regards,
Sam
-----Original Message-----
From: Briggs, Jr., Russell B. [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 10, 2003 1:36 PM
To: [EMAIL PROTECTED]
Subject: [ISSForum] No Vulnerabilities Discovered
Can someone comment on the common pitfalls when running ISS 7.0? I've tried
to scan an NT 4.0 workstations and server that is not running DNS but using
the LMHOST files for routing purposes. The ISS discovery policy identifies
the workstations in the usual manner but L3 to L5 security policies have yet
to uncover any vulnerabilities at all (yet the system admin claims they are
way behind in their software patching). Appreciate any comments...
_______________________________________________
ISSForum mailing list
[EMAIL PROTECTED]
TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to
https://atla-mm1.iss.net/mailman/listinfo
_______________________________________________
ISSForum mailing list
[EMAIL PROTECTED]
TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo
