Re: vulnerability in satan, cops & tiger

[pendleta () WWDSI COM (Adam H. Pendleton)]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[**SNIP**]
> Satan is out of date anyway, a new version will hit us someday in
the future.

For those of you who like SATAN, it might be worth your while to check
out SAINT, which is an improved version of SATAN.  We will be
releasing it July 1, for free of course.  SAINT includes all of SATAN
original checks, updated to make them even more comprehensive, plus we
have added more.  Some of the things we have added are:

   -- Firewall support (scanning through a firewall, the original
SATAN could not do this)
   -- Added checks for all relevant CERT advisories (and CIAC
bullitens)
   -- Added more severity levels (red, yellow, brown, green)
   -- Checks for more services (SMB, statd, DNS version, etc.)
   -- Improved HTML interface
   -- Updated documentation
   -- Minor bug fixes (like the /tmp vulnerability mentioned)

Check out the SAINT page at http://www.wwdsi.com/saint

Oh, SAINT stands for Security Administrator's Integrated Network Tool.

Also, I want to say thanks to Dan and Wietse who have been pretty
supportive through this, and without who this product never would have
been made.  SAINT version 1.2.1 will be available for download July 1.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Adam H. Pendleton
Corporate Security Officer
World Wide Digital Security, Inc. <http://www.wwdsi.com>
Reston, Virginia
USA


[**SNIP**]
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.5.5

iQA/AwUBNZRukGYLr94Yt2JdEQIz3ACghgu64cAtAHDlKv9OmuwinYZmqZAAn11Y
HFJgd5Erut9/m1QOtwjf4QXQ
=F0pi
-----END PGP SIGNATURE-----