Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Microsoft details Windows 8 for ARM devices
•	Cloudscaling to offer OpenStack private cloud platform
•	Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
•	Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
•	Microsoft details 'Windows on ARM' program
•	March debut of 'iPad 3' a sure bet, says analyst
•	Resume Makeover: How an Information Security Professional Can Target CSO Jobs
•
•	FBI unbolts Steve Jobs 1991 investigation file
•	Cisco boosted profit, sales in Q2 while cutting costs
•	Macs take on the enterprise
•	Four crazy tech ideas from Google's Solve for X project
•	Obama 2012 campaign playlist revealed courtesy of Spotify
•	Oracle buying Taleo for US$1.9 billion in direct hit at SAP
•	Amazon attacks Apple: You get 3 Kindle products for price of iPad 2
•	More breaking news

/

How we did it

By Mandy Andress
Network World, 02/04/02

For our testing, we configured a 12-system test network that contained a variety of platforms and configurations:

Red Hat Linux 6.2 default install.

Red Hat Linux 7.1 default install with firewall.

Two Windows 2000 Servers - one running Microsoft's Internet Information Server with no service packs and one with Service Pack 2 acting as a domain controller.

Two Win 2000 Professional systems - one running with no service packs and one with Service Pack 2.

Windows NT - Service Pack 6a and no hot fixes.

NetScreen firewall.

SNAP Network Attached Storage Device.

Hewlett-Packard printer with jet direct print serve.

Cisco 2600 router.

Solaris 8 system.

We identified a list of 15 vulnerabilities on this network and compared scan results to this list (click here for a list of vulnerabilities used in this test).

Each scanner was installed on a Pentium III-800 dual-processor system with 512M bytes of RAM running Win 2000 Server with Service Pack 2. One note - ISS does not support running Internet Scanner on a Windows Server. Therefore, we ran this product on a Pentium III-500 system with 256M bytes RAM running Win 2000 Professional with Service Pack 2. We did not notice any differences except for the speed. For Nessus, we used Red Hat Linux 7.1 running on a single-processor Pentium III-800 system with 256M bytes of RAM.

We scanned this network with each of the vulnerability assessment scanners and compared the results. For the scan, we ran the most comprehensive option available on the product. For our reports, we generated at least an executive summary and a detailed vulnerability report.

To test performance on a more enterprise level, we attempted to run scans on a private Class C IP network range that contained approximately 47 Windows and Linux systems. We also attempted to scan a private Class B IP network range containing 500 Windows and Linux systems.

Back to the review

RELATED LINKS

Andress is a network security engineer at TiVo and a frequent contributor to many publications. She has also authored several books, including Surviving Security. Andress is also active on the conference circuit, speaking at Black Hat, NetWorld+ Interop, and numerous other conferences. She can be reached at mandy@arcsec.com

Holes in your network
Vulnerability-assessment tools edge toward usefulness in large networks.

Vulnerability-assessment services on the rise
Like most markets these days, the vulnerability-assessment market has a new services-based component.

Network scanners pinpoint problems
EEye's Retina wins our Blue Ribbon Award for speed and quick fix features.

How we did it
Our testing methods explained.

Interactive Buyer's Guide chart
Search for the vulnerability-assessment scanner that fits your network best.

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.