By: Max

Max — Sun, 18 Feb 2007 07:09:00 +0000

you are right Alan, I also think that a good security management framework should go beyond ticking boxes on a compliance checklist.

However,by adding AntiVirus audit checks, Tenable seems to go for a piece of the compliance pie.

By: alan shimel

alan shimel — Sun, 18 Feb 2007 01:40:00 +0000

Hi saw your post on the security bloggers network feed. I saw the Tenable post as well. My question is what good is scanning for the anti-virus without taking some action. Either quarantine or remediate the device. Discovery for discovery sakes alone is not compliance. This is why with vulnerability management scanning doing compliance management, I think it is an interim step towards NAC type of functionality or automated remediation.

Comments on: Now You Can Do Anti-Virus Audit with Nessus

By: Max

By: alan shimel