Dear Mansour,
in my opinion the easiest way to solve your problem is
something like
rpm -e "unused package"
The other thing is:
It is an administrators task to decide to patch
or to patch not the special vulnerability .....
If in doubt : patch.
If there are some problems concerning rpms and unsolved dependencies:
It is not a nessus problem.
Please, read about installing packages using rpm....
regards
chmod077.
--- Ursprüngliche Nachricht ---
Von: Mansour <randex@gmail.com>
An: nessus@list.nessus.org
Betreff: We Found the Vulnerabilities, so What Next ?!!
Datum: Fri, 17 Feb 2006 11:19:44 +0300
Dear All
We scan some of our critical systems (RedHat) by Nessus, and we found a
lot
of Vulnerabilities.
Some of this Vulnerabilities are related to unused software like
(ImageMagick, mozilla , RealPlayer, etc) since this system is a web
server.
And other Vulnerabilities are related to the kernel or to the web service.
We try to patch the system to close all Vulnerabilities that were found
(and
this seem the optimal solution) but we cause a conflicted and the system
was
down, so we remove the patches.
I'm asking about the procedure that we can fallow to patch a critical
systems. Are we should patch all the Vulnerabilities ? or just the
Vulnerabilities that related to web service (since it's the only open
port),
how can we patch this kind of systems. How we can minimize the risk of
using
unpatched system ?
Do you have any Idea ?
With Best Regards,
--
NCSISU
Non Certified Security Information Systems User
Lust, ein paar Euro nebenbei zu verdienen? Ohne Kosten, ohne Risiko!
Satte Provisionen für GMX Partner: http://www.gmx.net/de/go/partner
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
