Linux Today: Linux News On Internet Time.

AppWatch: Saint 2.1 released

Jun 08, 2000, 00:05 (0 Talkback[s])

[ Thanks to John D. Rowell for this link. ]

The SAINT security scanner is now capable of detecting many recently discovered vulnerabilities, including the one on Gauntlet and WebShield firewalls running CyberPatrol. Vulnerabilities included in SANS Top 10 Internet Security Threats are now clearly indicated in all reports.

"SAINT is the Security Administrator's Integrated Network Tool. In its simplest mode, it gathers as much information about remote hosts and networks as possible by examining such network services as finger, NFS, NIS, ftp and tftp, rexd, statd, and other services. The information gathered includes the presence of various network information services as well as potential security flaws usually in the form of incorrectly setup or configured network services, well-known bugs in system or network utilities, or poor or ignorant policy decisions. It can then either report on this data or use a simple rule-based system to investigate any potential security problems. Users can then examine, query, and analyze the output with an HTML browser, such as Mosaic, Netscape, or Lynx. While the program is primarily geared towards analyzing the security implications of the results, a great deal of general network information can be gained when using the toolnetwork topology, network services running, types of hardware and software being used on the network, etc."

Many new vulnerabilities are detected, check the relevant links and changes history at AppWatch.com.