Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security ISSForum
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ISSForum] Testing of ISS Products

from [Jonathan Glass] Network Security [Permanent Link]
Subject: Re: [ISSForum] Testing of ISS Products
Date: Wed, 19 Oct 2005 09:01:59 -0400 
Weiss, Mark (M.A.) wrote:

All,

I'm looking for some feedback regarding any testing of ISS products
(notably Server Sensor, Network System, Internet Scanner & Proventia
Desktop) that is done by companies once they receive them prior to
implementation into their production environments.

We are mainly looking for test matrices, types of functionality tested,
tools used and anything else that could help us create a test
enviornment that would allow us to fully test these products before we
release them into production.

Thanks in advance,
Mark Weiss
Ford Motor Company 


We have an environment of distributed control with a centralized 
SiteProtector console.  Each department has established a "testing" 
group into which they place their testing machines whenever new patches 
for Proventia Desktop ship.

For our purposes, we focus exclusively on the host-based firewall and 
IPS features of the package.  If the department technical leads wish to 
test other features (and many are working with the Buffer Overflow 
Protection and finding interesting issues), that is up to them.  We 
(central OIT - Information Security) only request feedback on the 
firewall and ease of installation and administration.

For the SiteProtector patches, I generally wait a week and let some 
other canary die in the coal mine before I apply those updates.  ISS has 
a tendency (real or perceived, what's the difference) to release their 
patches without proper quality assurance testing, and the early adopters 
tend to break things.

For Internet Scanner, I have a group of machines to run this software, 
and I apply the latest updates (Windows & ISS Updates) to ONE machine at 
a time and run a few test scans before applying to the rest of them.

I don't have any real matrices or list of deliverables.  I guess that'd 
be a wise thing to create...

Jonathan

_______________________________________________
ISSForum mailing list
ISSForum@iss.net

TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to 
https://atla-mm1.iss.net/mailman/listinfo/issforum

To contact the ISSForum Moderator, send email to mod-issforum@iss.net

The ISSForum mailing list is hosted and managed by Internet Security Systems, 
6303 Barfield Road, Atlanta, Georgia, USA 30328.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [ISSForum] Access to lan/wlan, Muggli, Roger
Next by Date:  Re: [ISSForum] Testing of ISS Products, Ryan Hoffmann
Previous by Thread:  [ISSForum] Testing of ISS Products, Weiss, Mark \(M.A.\)
Next by Thread:  Re: [ISSForum] Testing of ISS Products, Caulk,Mark A
Indexes:  [Date] [Thread] [Top] [All Lists]