* Which is best for vulnerability management: agent-based or agent-less scanners? Managing security weaknesses no easy taskBy Ellen MessmerVulnerability management starts with tools that assess security in network gear and applications, but it’s a road that forks, one way leading to host- or agent-based scanners and the other to network-based or agentless scanners.An agent-based vulnerability scanner is deployed directly on the host system; the alternative, an agentless scanner, probes machines at targeted IP addresses. By year-end, agent-based options are expected to nudge out agentless tools in sales volume by about $100 million, IDC predicts, with total sales for both types of about $600 million. Although the market is rich in both varieties, experts say several factors influence the choices that network managers make in vulnerability assessment. Both approaches have pros and cons. “The bad thing about agents is that they’re expensive to install and maintain,” says John Pescatore, an analyst at Gartner, in describing the considerations that come up with the decision about which route to take.The bigger the network, the more the agent-based software that has to be installed. Costs typically range from about $25 to $40 per desktop to hundreds of dollars for servers, according to vendors with agent-based products. On the other hand, “the huge benefit of an agent-based [scanner] is that you can get deeper information about the computer node, such as looking into the registry,” Pescatore says. To read this story in its entirety, please go to: http://www.networkworld.com/news/2005/121205-enterprise-security.html?rlEllen Messmer is a Network World senior editor. She can be reached at emessmer@nww.com Related content how-to Doing tricks on the Linux command line Linux tricks can make even the more complicated Linux commands easier, more fun and more rewarding. By Sandra Henry-Stocker Dec 08, 2023 5 mins Linux news TSMC bets on AI chips for revival of growth in semiconductor demand Executives at the chip manufacturer are still optimistic about the revenue potential of AI, as Nvidia and its partners say new GPUs have a lead time of up to 52 weeks. By Sam Reynolds Dec 08, 2023 3 mins CPUs and Processors Technology Industry news End of road for VMware’s end-user computing and security units: Broadcom Broadcom is refocusing VMWare on creating private and hybrid cloud environments for large enterprises and divesting its non-core assets. By Sam Reynolds Dec 08, 2023 3 mins Mergers and Acquisitions Industry news analysis IBM cloud service aims to deliver secure, multicloud connectivity IBM Hybrid Cloud Mesh is a multicloud networking service that includes IT discovery, security, monitoring and traffic-engineering capabilities. By Michael Cooney Dec 07, 2023 3 mins Network Security Network Security Network Security Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe