Presentation is loading. Please wait.

Presentation is loading. Please wait.

Office of the Vice President Copyright Notice Copyright Greg Hedrick, Matthew Wirges 2004. This work is the intellectual property of the author. Permission.

Published byLesley Norris Modified over 9 years ago

Similar presentations

Presentation on theme: "Office of the Vice President Copyright Notice Copyright Greg Hedrick, Matthew Wirges 2004. This work is the intellectual property of the author. Permission."— Presentation transcript:

1 Office of the Vice President Copyright Notice Copyright Greg Hedrick, Matthew Wirges 2004. This work is the intellectual property of the author. Permission is granted for this material to be shared for non-commercial, educational purposes, provided that this copyright statement appears on the reproduced materials and notice is given that the copying is by permission of the authors. To disseminate otherwise or to republish requires written permission from the authors.

2 Office of the Vice President Vulnerability Scanning Cluster (VSC)

3 Office of the Vice PresidentIntroduction Greg Hedrick, CISSP Manager, Security Services Matt Wirges IT Security and Privacy Analyst

4 Office of the Vice President VSC Agenda  Motivations  Design and Implementation of the VSC  Problems Encountered  Current and Future Development  Summary  Resources  Questions

5 Office of the Vice President VSC Motivations  CERIAS Ability to review or perform vulnerability scans in incident response/analysis.  ITSP Centrally organize scanning reports. Increase computing power required for vulnerability scanning especially simultaneous scanning. Provide necessary bandwidth for scanning the entire campus, for example. Make it self-serve. Scan when necessary. No internal Security development skills.

6 Office of the Vice President VSC Design Three main components  Web Interface  Scanning Queue  Scanning Cluster

7 Office of the Vice President VSC Implementation  Web Interface  Scanning Queue  Scanning Cluster Nessus LVS Cluster configuration

8 Office of the Vice President VSC Implementation

9 Office of the Vice President VSC Implementation

10 Office of the Vice President VSC Implementation

11 Office of the Vice President

12

13

14

15

16 VSC Problems Encountered  Many problems encountered with testing version 1.0 and follow-up production version 1.1 Web Interface Scanning Queue Scanning Cluster

17 Office of the Vice President VSC Current and Future Work  Development towards VSC 2.0 Adds many new features Attempts to fix most of the problems encountered with initial releases  Redeployment of VSC production environment

18 Office of the Vice President VSC 2.0  Redesigned interface Better layout, smarter navigation More consistent widgets More efficient management of scanning policies and plugins Abandon Nessus report formats for customizable report generation Overhaul people management Abandon PHP OOP in favor of database interface libraries; result is a quicker application, but still easy to develop with

19 Office of the Vice President VSC 2.0  Redesigned queue PHP dropped in favor of a Perl daemon Nessus client abandoned in favor of Net::Nessus::ScanLite module Allows the queue to talk directly to the scanner server Results stored directly in database in custom tables to allow easy lookup of data Many cron-based tasks (plugin nightly updates) and resource consuming tasks from web interface moved to Perl daemon (i.e. DNS lookup, NetBIOS name querying)

20 Office of the Vice President VSC 2.0 CVS  Features already implemented Redesigned page layout; better presentation of menus Increased usability of management interfaces Expanded policy and scan-time configuration options for the Nessus scanner DNS and NetBIOS lookups for hosts Rewritten scan queue in Perl; added many enhancements to scheduling algorithm Policy weighting Scan priorities Hosts scanned in batches, rather than one at a time NetBIOS lookups (where applicable) at scan time to correlate scan results with DHCP hosts

21 Office of the Vice President VSC 2.0 Development  Features in development Enhanced scan reporting tool Customizable Differential Available in a variety of formats Ability to pause scans Better LDAP integration

22 Office of the Vice President VSC Summary  Benefits Free  More to do

23 Office of the Vice President VSC Resources  Vulnerability Scanning Cluster homepage: http://vscweb.sourceforge.net VSC 1.99 Preview Release CVS repository Help us out! Bug reports, feature requests, development contributions!  Linux Virtual Server software http://www.linuxvirtualserver.org  Nessus Vulnerability Scanner http://www.nessus.org

24 Office of the Vice President VSC Resources  VSC Development List Questions Bugs Development discussion vscweb-devel@lists.sourceforge.net  General Questions itap-vsc@purdue.edu hedrick@purdue.edu wirges@purdue.edu

25 Office of the Vice PresidentQuestions

26 VSC Current and Future work

27 Office of the Vice President VSC Current and Future work

28 Office of the Vice President

29

30

31

Download ppt "Office of the Vice President Copyright Notice Copyright Greg Hedrick, Matthew Wirges 2004. This work is the intellectual property of the author. Permission."

Similar presentations

A Successful Help Desk Process for all IT Support

A Successful Help Desk Process for all IT Support
What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.

What Does the Net Generation Expect From Us? SAC August 8, 2005 SAC August 8, 2005 Copyright © 2005, Joel L. Hartman. This work is the intellectual property.
Student, Faculty, and Staff Data Availability and Protection What’s the Back-Up Plan? (for academic computing) Sponsored by.

Student, Faculty, and Staff Data Availability and Protection What’s the Back-Up Plan? (for academic computing) Sponsored by.
The Academic Computing Assessment Data Repository: A New (Free) Tool for Program Assessment Heather Stewart, Director, Institute for Technology Development,

The Academic Computing Assessment Data Repository: A New (Free) Tool for Program Assessment Heather Stewart, Director, Institute for Technology Development,
A Web-based Bibliography Management Initiative: Collaborating for Classroom and Library Technology Integration Brian Nielsen, Academic Technologies Denise.

A Web-based Bibliography Management Initiative: Collaborating for Classroom and Library Technology Integration Brian Nielsen, Academic Technologies Denise.
Copyright Tom Parker, Ron DiNapoli, Andrea Beesing, Joy Veronneau 2004. This work is the intellectual property of the authors. Permission is granted for.

Copyright Tom Parker, Ron DiNapoli, Andrea Beesing, Joy Veronneau This work is the intellectual property of the authors. Permission is granted for.
Design & Development Scott Battaglia Application Developer Enterprise Systems and Services Rutgers, the State University of New Jersey

Design & Development Scott Battaglia Application Developer Enterprise Systems and Services Rutgers, the State University of New Jersey
Copyright Sylvia Maxwell and Michael White, 2007. This work is the intellectual property of the author. Permission is granted for this material to be shared.

Copyright Sylvia Maxwell and Michael White, This work is the intellectual property of the author. Permission is granted for this material to be shared.
Andrea Eastman-Mullins Information & Technology Coordinator University of North Carolina, Office of the President Teaching and Learning with Technology.

Andrea Eastman-Mullins Information & Technology Coordinator University of North Carolina, Office of the President Teaching and Learning with Technology.
SecurityCenter Reporting Nessus Scan Report. SecurityCenter Reports For customers who use Nessus for vulnerability scanning and then move to SecurityCenter,

SecurityCenter Reporting Nessus Scan Report. SecurityCenter Reports For customers who use Nessus for vulnerability scanning and then move to SecurityCenter,
Copyright Brian T. Huntley and Tim Antonowicz 2007 This work is the intellectual property of the authors. Permission is granted for this material to be.

Copyright Brian T. Huntley and Tim Antonowicz 2007 This work is the intellectual property of the authors. Permission is granted for this material to be.
Yale University Information Technology Services Administrative Systems Art Hunt 3/22/04 Software Service Level Agreement with Finance, Procurement and.

Yale University Information Technology Services Administrative Systems Art Hunt 3/22/04 Software Service Level Agreement with Finance, Procurement and.
February 2006 copyright Michael Welch, Blinn College This work is the intellectual property of the author. Permission is granted for this material to be.

February 2006 copyright Michael Welch, Blinn College This work is the intellectual property of the author. Permission is granted for this material to be.
Delivering Windows OS Updates at Yale with SUS EDUCAUSE Security Professionals Workshop May 17, 2004 Washington DC Ken Hoover, Systems Programmer

Delivering Windows OS Updates at Yale with SUS EDUCAUSE Security Professionals Workshop May 17, 2004 Washington DC Ken Hoover, Systems Programmer
Educause Security 2007ISC Information Security Copyright Joshua Beeman, 2007. This work is the intellectual property of the author. Permission is granted.

Educause Security 2007ISC Information Security Copyright Joshua Beeman, This work is the intellectual property of the author. Permission is granted.
Migrating to uPortal 2 at UBC Paul Zablosky University of British Columbia Copyright Paul Zablosky 2003. This work is the intellectual property of the.

Migrating to uPortal 2 at UBC Paul Zablosky University of British Columbia Copyright Paul Zablosky This work is the intellectual property of the.
The Homegrown Single Sign On (SSO) Project at UM – St. Louis.

The Homegrown Single Sign On (SSO) Project at UM – St. Louis.
Procurement From the 20 th to the 21 st Century Copyright Byron Honoré 2007. This work is the intellectual property of the author. Permission is granted.

Procurement From the 20 th to the 21 st Century Copyright Byron Honoré This work is the intellectual property of the author. Permission is granted.
Foundations of Excellence: Support Services for Online Learning Midwest Regional Conference, 2005 Chicago, Illinois Presenters: Diane Dates Casey Jan Engle.

Foundations of Excellence: Support Services for Online Learning Midwest Regional Conference, 2005 Chicago, Illinois Presenters: Diane Dates Casey Jan Engle.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008

Similar presentations

Ads by Google