Check this out. New tool for Cisco shops to check the security settings. Haven't tried it yet, but it looks promising. :D
http://www.idg.net/go.cgi?id=643351
Printable View
Check this out. New tool for Cisco shops to check the security settings. Haven't tried it yet, but it looks promising. :D
http://www.idg.net/go.cgi?id=643351
+tive antis Korp. Good post. I'm checking it out tomorrow..
let us know of the results... is it worth it or jsut another one of those ....
hey it's the same tool that the sans instiute relases to counter the snmp flaw last week or so
.....
and yes it is a good tool
ran the CIM on winnt and w2k see my post in the other forum. Hope to do cisco one soon but not finished checking snmp problem yet.
In the msoft security forum :D
nabylbt - i found it useful. Finished the solaris one now. Odd, takes much longer than w2k one. Popped the box with it and got a crummy score. ck your logs in /opt/CIS/cis-ruler-log.xxxxx <date> after it goes through /etc/passwd, shadow, shells,vfstab, system does the inetd.conf and uses netstat to ck your tcp and udp listeners. finishes with set uid +gid.
Warning don't run this bZtch on a prod or sb unit it sucks resources bigtime. ck logs when done.