Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	SP2 beta for Windows Server 2008, Vista available
•	Nokia's new N97 vs. the iPhone: Latest smartphone showdown
•	Wanted: A long-term data center strategy
•	FastSoft technology speeds downloads for Getty Images
•	Open source developers set out software road map for 2020
•	VMware expands desktop virtualization capabilities
•	FBI warns of holiday cyber scams
•	Cisco renews call for national broadband strategy
•	Apple antivirus advice 'big to-do about nothing'
•	U.S. Open used Web filtering to prevent online gambling
•	Google Earth used by terrorists in India attacks
•	Verizon trounces competition in wireless quality survey
•	Mumbai terrorist attacks don't deter technology companies
•	Google layoffs: 10,000 jobs being cut, report claims
•	Experts to Feds: Sign the DNS root ASAP
•	More breaking news

Security /

How we did it

By Mandy Andress
Network World, 02/04/02

For our testing, we configured a 12-system test network that contained a variety of platforms and configurations:

Red Hat Linux 6.2 default install.

Red Hat Linux 7.1 default install with firewall.

Two Windows 2000 Servers - one running Microsoft's Internet Information Server with no service packs and one with Service Pack 2 acting as a domain controller.

Two Win 2000 Professional systems - one running with no service packs and one with Service Pack 2.

Windows NT - Service Pack 6a and no hot fixes.

NetScreen firewall.

SNAP Network Attached Storage Device.

Hewlett-Packard printer with jet direct print serve.

Cisco 2600 router.

Solaris 8 system.

Advertisement:

We identified a list of 15 vulnerabilities on this network and compared scan results to this list (click here for a list of vulnerabilities used in this test).

Each scanner was installed on a Pentium III-800 dual-processor system with 512M bytes of RAM running Win 2000 Server with Service Pack 2. One note - ISS does not support running Internet Scanner on a Windows Server. Therefore, we ran this product on a Pentium III-500 system with 256M bytes RAM running Win 2000 Professional with Service Pack 2. We did not notice any differences except for the speed. For Nessus, we used Red Hat Linux 7.1 running on a single-processor Pentium III-800 system with 256M bytes of RAM.

We scanned this network with each of the vulnerability assessment scanners and compared the results. For the scan, we ran the most comprehensive option available on the product. For our reports, we generated at least an executive summary and a detailed vulnerability report.

To test performance on a more enterprise level, we attempted to run scans on a private Class C IP network range that contained approximately 47 Windows and Linux systems. We also attempted to scan a private Class B IP network range containing 500 Windows and Linux systems.

Back to the review

RELATED LINKS

Andress is a network security engineer at TiVo and a frequent contributor to many publications. She has also authored several books, including Surviving Security. Andress is also active on the conference circuit, speaking at Black Hat, NetWorld+ Interop, and numerous other conferences. She can be reached at mandy@arcsec.com

Holes in your network
Vulnerability-assessment tools edge toward usefulness in large networks.

Vulnerability-assessment services on the rise
Like most markets these days, the vulnerability-assessment market has a new services-based component.

Network scanners pinpoint problems
EEye's Retina wins our Blue Ribbon Award for speed and quick fix features.

How we did it
Our testing methods explained.

Interactive Buyer's Guide chart
Search for the vulnerability-assessment scanner that fits your network best.

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.

Click Here

alt text

Click Here

HOME

RESEARCH CENTERS

NEWS

Contact us | Terms of Service/Privacy | How to Advertise
Reprints and links | Partnerships | Subscribe to NW
About Network World, Inc.

Copyright, 1994-2006 Network World, Inc. All rights reserved.