On 2010/12/14 6:17 AM, Ron Gula wrote: > For credentialed checks speed is also something you should consider. > False positives are less of an issue with credential checks, but false > negatives are a big issue. Lots of other scanners besides Nessus miss > 3rd party apps like java, trend, iTunes, .etc. and only focus on patches > related to the OS. Doing things like running netstat durign a port-scan > dramatically changes the speed of the scan as well.
For what it's worth, the 3rd party stuff seems very well handled by Secunia. We have a CSI license, which wound up making me look pretty good - my prediction was "it'll be utterly dominated by Acrobat and Java." You can guess how it turned out. :-) Mike _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
