From: Jeff A. Earickson (jaearick@colby.edu)
Date: Fri Jul 23 2004 - 10:06:19 CDT
Hi,
We have been having a philosophical discussion in-house about how
to tell if a machine (lets talk Windows for the moment) is really
up-to-date on patches, and has anti-virus software installed.
For the sake of discussion, we are interested in Windows machines
that are owned by our students and are not part of our Active
Directory domain. We use Sophos anti-virus, but detecting other
anti-virus products would be cool too.
As I understand it from reading this list, the only way to tell
the patch level and anti-virus is by inference -- port scanning
and/or nessus probes against the Windows client. True? If not
true, then how does one directly find out:
a) the Windows patches applied to the machine?
b) what anti-virus, version, and last update is installed?
We are concerned about the issues of false positives and negatives
from nessus scans, plus the intrusiveness and overhead of indirect
methods like nessus.
Jeff Earickson
Colby College
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:47 CDT