Tenable Blog

The current DNS cache poisoning issue is a great example of a vulnerability that must be tested with both patch auditing as well as network scanning. Nessus is ideally suited to perform both types of   audits. This blog entry discusses the advantages of using an auditing tool like Nessus as compared to pure patch auditing or network scanning.

NAT and DNS Cache Poisoning

Previously, I've blogged about Digital Bond's effort (project Bandolier) to produce Nessus audit polices for a wide variety of control system devices and applications. Digital Bond recently published alpha releases of audit files for Siemens Spectrum Power and Televent OASyS DNA systems.

I will be participating today in a White Hat World "Thought Leadership Roundtable Webcast" today at 2:00 PM EST on the topic of Phishing. Other panel members include representatives from Secure Computing, SonicWall, and Missing Link Security Services. To register for the event or watch the recorded session after it occurs, please use the following link:

Previously, Tenable announced that full su/sudo support for UNIX host-based checks was now supported by Nessus 3.2 but that UNIX configuration audits did not have access to this feature. With the latest release of the unix_compliance_check.nbin file (version 1.5.8), full support for su and sudo while performing UNIX compliance audits is now supported. This blog entry discusses this and several other new features.

Tracking the hardware network address of Ethernet devices can be a daunting task for an enterprise network operations group. The ability to track Ethernet (or MAC) addresses can have tremendous value for tracking changes to the network, user activity and access control. This situation can be exacerbated in a dynamic IP address environment.