Tenable Network Security Podcast Episode 155 - "Patch Management Conflict Auditing"

Welcome to the Tenable Network Security Podcast Episode 155

Announcements

New & Notable Plugins

Nessus

Web Application-related Plugins:

Various Plugins:

Virtualization Plugins:

Passive Vulnerability Scanner

Nessus Configuration and Compliance Checks

Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.

  • Tivoli Enterprise Manager Server and Client Audits - These audit files verify most of the recommended settings that should be reviewed on a TEM Server, Relay Server, or Client install. They include checks for versions, required service status, directory paths, and URLs. Other checks verify the configuration for users, password parameters, the TEM required services, and file permissions. Where appropriate, the checks have the ability to be customized to the specific requirements of the local environment.

Stories

  1. PSA: Don’t upload your important passwords to GitHub | Ars Technica
  2. Scripts and Picks: Command Execution on Shoretel Mobility Router
  3. RaiderSec: Wireless "Deauth" Attack using Aireplay-ng, Python, and Scapy
  4. Hackers drop rogue Apache modules and SSH backdoors on web servers
  5. Anons hack Asteroids into US DoJ website in Swartz death protest
  6. 'Cyber 9/11' may be on horizon, Homeland Security chief warns
  7. Oracle will continue to bundle 'crapware' with Java
  8. Avoid the Landmine That is Hacking Back

More from the Tenable Blog