Access "Editor's Desk: Nessus charges for signature updates"
This article is part of the February 2005 issue of 12 security lessons for CISOs they don't teach you in security school
Security pros, stop feasting! There are no more free lunches at Nessus. Renaud Deriason, father of the popular open-source vulnerability scanner, and his business partner Ron Gula have spoken: You can still get the scanner free, but you have to pay for the signature updates. The cost of developing Nessus signatures is outpacing donations to the development team. Nessus is now a stepchild of Deriason's and Gula's newest venture, Tenable Network Security, which develops commercial vulnerability scanners that complement and capitalize on Nessus. Rather than releasing vulnerability signatures as they become available, the Nessus Open Source Vulnerability Scanner Project is now charging for the service. Only those who pay will receive immediate updates; all others must wait seven days--an eternity of exposure. Users of Tenable's commercial Lightning management console receive the updates as part of their license. In God we trust, all others pay cash, indeed. Who will this affect? For starters, the numerous security vendors that rely on Nessus as the foundation of... Access >>>
Premium Content for Free.
Secure Reads: The Network Security Bible
A review of the Network Security Bible by Eric Cole, Ronald Krutz and James W. Conley
Desktop Security: Senforce Portable Firewall Plus
Senforce's Senforce Portable Firewall Plus
Wireless security product review: AirTight Networks' SpectraGuard 2.0
A review of AirTight Networks' SpectraGuard 2.0
Database Security: Ingrian i211 DataSecure Platform
Ingrian Networks' Ingrian i211 DataSecure Platform
In MSSPs We Trust
Regulatory and cost-cutting pressures are forcing enterprises to reexamine the value of managed security services.
On the Job
12 lessons they don't teach you in security school about being a CISO.
- Secure Reads: The Network Security Bible
Recent Releases: Security product briefs, February 2005
Learn about the security products launched in February 2005.
IronPort C-Series Messaging Gateway: Antivirus, Antispam tool
Enhance your email security strategy with IronPort's C-Series Messaging Gateway. In this product review you will get information on cost, installation, reporting, configuration, and antivirus and antispam technology.
Hot Pick: Funk Software's Odyssey Client 3.03 and Odyssey Server 2.01
by Steven Weil, Contributor
Funk Software's Odyssey Client 3.03 and Odyssey Server 2.01
SSHv2: Safe & Secure
The overhauled encryption protocol helps harden networks.
Security: Measuring Up
by Pete Lindstrom, Contributor
Metrics are the key to measuring security. Learn how to gather data and calculate the answers you need.
- Recent Releases: Security product briefs, February 2005
Logoff: The battle against spyware
On the Radar
Perspectives: Symantec, Veritas pairing to change security
Symantec's merger with Veritas will change security managers' lives.
Editor's Desk: Nessus charges for signature updates
No Free Lunches
- Logoff: The battle against spyware
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...