[Full-disclosure] What can a Remote Vulnerability Scanner do in Future?
Michael Holstein
michael.holstein at csuohio.edu
Mon Feb 6 14:07:48 GMT 2006
> But Windows XP with sp2 enhance the security configuration and block
> these checking way. So we can not do local check on Windows XP sp2
> except ask customers to do a lot of complex configuration.
Well, with the enhanced security configuration and firewall enabled, the
vulnerability is no longer "remotely exploitable", is it?
If you want to check for local vulnerabilities, you'll to run something
client-side. There's at least a half-dozen ways to do this in a domain
model (eg: GPO or logon scripts) -- but in a standalone environment,
you'll need an agent of some type.
Cheers,
Michael Holstein CISSP GCIA
Cleveland State University
Full-Disclosure is hosted and sponsored by Secunia.