HFNetChk Pro ent. VS. LanGuard Network Security Scanner
|
Logged in as: Guest
|
|
Users viewing this topic:
none
|
|
Login  | |
|
HFNetChk Pro ent. VS. LanGuard Network Security Scanner - 2.Aug.2002 4:59:00 PM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
Hello,
My name is Chad. I am a Web Services and Network Systems Engineer and a budding security newbie. I have been a long time fan of GFI and LanGuard security related tools.
Recently, our team has been considering implementing ShavlikÆs HFNetChk Pro (www.shavlik.com ) as a enterprise tool to push and maintain security hotfixes and patches on Intel-based MS NT 4.0 and 2000 (5.0) servers.
HFNetChk Pro is a great tool, but I have found that LANguard Network Security Scanner, especially in the new beta release, is also an extremely informative and potentially powerful security tool.
I would like to know if it would be possible for you to assist me in comparing these two products and also any other competitive related products for the purpose of rolling out and maintaining security in an NT enterprise environment from broad security perspective as well as a specific a HotFix and SP perspective?
Shavlik has free demos and downloads available. So feel free to check these products out and share your comments.
I would be glad to work with you in any manner you see fit. Please feel free to email me back at netdeveloping@hotmail.com .
Thank You for your time,
Sincerely,
Chad Lawler, MCSE, MCP + I
![[Roll Eyes]](/image/smiles/rolleyes.gif)
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 4.Aug.2002 2:18:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
Hi Chad,
I'm glad you are interested in LNSS.
I will contact you Monday.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 9:08:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
Hello again Chad,
Please formulate your questions.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 9:15:00 AM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
Hi Blade,
Thanks for coming
Ok. To get started, does gfi security scanner, the newe version supoprt auto updates for servers that it finds needing hotfixes and service packs?
if som, does it suipport goign through a proxy in order to download required files?
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 9:30:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
It only detect and install missing patches (not service packs). - this version at least
I understand the latest version of Shavlik's product is doing also service packs (not only patches)
Regarding proxy download :
yes, it supports proxy servers.
One detail :
What do you understand auto updates for servers ?
Do you understand that LNSS (or other products) will go to microsoft's site and download the needed patches ?
This is not possible because Microsoft's XML file doesn't allways contain full path to the patch file (sometime contain a generic link like www.windowsupdate.com)
So, it's not possible for LNSS or Shavlick (or other products using MS's XML file) to auto-download the required patches.
A list with required patches is presented to the user and he must download every patch by hand.
After that, this patches can be deployed on all computers.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 9:38:00 AM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
ok.
That is interesting. Well, I think the way Shavlik is getting around the download issue is they maintain all the download files on their site and instead of having their software go to MS, it goes to shavlik.com and it pulls all the updates form there. This enables the sw to bypass things like windows update.
Ok, next questions.
Do you think GFI will promote their scanner as a competitor product to HFNetChk Pro? I think it could easily be done. And GFI pricing is much better.
Also, what are the limitations of GFI network security scanner as far as the pushing of hotfixes is concerned?
How many IPs can it scan?
Can you schedule the scan? Can you set options ot automatically push the patches out to all servers or specific servers and have them reboot?
C
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 9:52:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
I cannot tell exactly how the latest version of Shavlik's product is working but the latest version I have tested was doing what I have described. Maybe the latest version is behaving differently but I don't think so.
It would be possible to perform what you have described but the problem is not with the downloads , the problem is the XML file.
If they are constructing a custom XML file on their site (based on the XML file from MS and with modified links, the problem could be solved but it's a lot of work). Anyway, MS is to blame for this ...
Next questions :
GFI will try to promote LNSS as a competitor.
HFnetChkPro is only doing patch+SP detection/deployment. LNSS is doing a lot more than HFNCP, network probing, os fingerprinting, port scanning, security alerts probing, cgi probing, sql, grabs a lot of information, ...
So, from my point of view, you cannot compare this two products.
Limitations : LNSS doesn't do SP deploying.
IP-s : theorethically unlimited
The answre the other questions is yes.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 10:05:00 AM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
Great. Ok.
Yes, the new release of HFNetChk Pro, Ent. is out, version 3.8.93. The Demo version is called HFNetChk Pro Lite and it is the same as the enterprise version, except it limits you to only 2 ips at a time.
I am glad to hear the GFI security scanner is in some opinions superior to HFNetChk Pro. But the missing SP option is a killer missing component.
Will GFI be adding the option to push SPs? Why was this not included, since it is so similar to HotFixes and critical for security?
Does the GFI security scanner have the ability to scan across multiple subnets?
Does the scan require servers to have Remote Registry enabled?
How invasive is the scan? Would intrusion detection software be able to detect this scan? Does it run in promiscuous mode?
How cpu/memory intensive are the effects of being scanned on the target server?
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 10:18:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
Push SP-s ?
It will be included in a future version.
Why it was not included ?
Didn't had enough time.
Shavlik has also included this feature only in a recent version.
Answers to the other questions :
Yes
Yes
It's pretty invasive, IDS will detect the scan.
Becasue we are not doing just patch checking/deployment we are auditing a lof of stuff.
Not intensive, the normal user will not notice anything.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 10:36:00 AM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
Wow, that's great.
It seems to me that except for the SP issue, this is a great product, possibly far superior to HFNetChk Pro and certainly more comprehensive from a security perspective.
If GFI included the PS push as well as made a work around for avoiding MS windowsupdate, then I would be instantly sold because the price is simply fantastic.
What kind of support will be provided for this product in the US?
I am working on a procedure document for securing NT/2000 server OS and a separate doc specifically on hardening and securing IIS 4.0/5.0. This involves registry changes, permissions configuration, and items along those lines. Would it be possible to have GFI network security scanner push a scripted or batch file out as part of the security update to servers on a network in the same fashion that it does with HFs?
C
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 10:50:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
I don't know what kind of support will be provided in US.
You should ask somebody else this question.
Good ideea about pushing scripts.
Right now it's not possible to push a script or a batch file but this should be something very easy to add in a future version.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 11:11:00 AM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
Do you think it would be possible for GFI to release a technical comparison between their security scanner and HF push utility and the competitive market products available?
I would be very interested in such a comparison and it could certainly be utilized to encourage companies to purchase GFI's product.
C
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 11:13:00 AM
|
|
|
Blade
Posts: 286
Joined: 20.Feb.2001
From: Romania
Status: offline
|
I will discuss it with the guys.
Will see what can be done.
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 2:18:00 PM
|
|
|
xnih
Posts: 2465
Joined: 30.May2001
From: Idaho
Status: offline
|
In regards to:
quote:
Do you think it would be possible for GFI to release a technical comparison between their security scanner and HF push utility and the competitive market products available?
I would be very interested in such a comparison and it could certainly be utilized to encourage companies to purchase GFI's product.
It is currently in the works.
eric
|
|
|
|
|
RE: HFNetChk Pro ent. VS. LanGuard Network Security Sca... - 5.Aug.2002 2:23:00 PM
|
|
|
netdeveloping
Posts: 9
Joined: 1.Aug.2002
Status: offline
|
What other options and add ons are in the works for this product?
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
|
Printable Version
