From: Eric Gauthier (elg@bu.edu)
Date: Thu May 27 2004 - 10:16:09 CDT
Hello,
We find that you really need to do both. You need to do some level of
scanning and cleaning as the system first comes online and before full
network access is granted. Additionally, you need to do active/periodic
scanning and drop people into a pre-registration state if they find them.
Eric Gauthier
Network Engineer
617-353-8218 ~^~ elg@bu.edu
Boston University - Office of IT
-----Original Message-----
From: owner-netreg@southwestern.edu [mailto:owner-netreg@southwestern.edu]
On Behalf Of John Hascall
Sent: Thursday, May 27, 2004 10:56 AM
To: netreg@southwestern.edu
Subject: Re: NetReg: NetReg Security Scanning
> I have a question concerning the security scanning add-on that was
> developed by the University of Connecticut as well as others. My
> question concerns the effectiveness of this add-on in fighting
> unpatched and unprotected machines. Would a regular periodic security
> scan do a similar job?
In our experience, no.
During last fall's move-in days we had machines getting compromised as quick
as 15 seconds after connecting to the network.
John
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:45 CDT