[BESAdmin-Announcements] Fixlet Site Announcements: Trying to find those unmanaged computers in your network? How about finding vulnerabilities on all your computers?

Fri Feb 3 14:39:37 PST 2006

We are pleased to announce the availability on several new Fixlet sites.
Each of these new sites is included in our new "Vulnerability and Security
Configuration Management Suite" offering.

** BES Asset Discovery now officially released:
Have you ever thought, "I wonder how many computers in my company don't have
the BES Client installed?" If so, you are in luck because now you can find
them quickly and easily. The BES Asset Discovery Fixlet site will allow you
to designate "Scan Points" (which are BES Clients with an extra component
installed) across your network that will actively find computers that don't
have the BES Client. It will also find any network device (routers,
switches, printers, etc.), which can be very helpful for inventory purposes.
All this information is available to you in the BES Console and the BES Web
Reports.

The largest deployment currently using BES Asset Discovery has over 2,500
offices and over 60,000 computers. By designating a "Scan Point" in each
office (every BES Relay was designated a scan point), they were able to very
quickly find thousands of computers that didn't have the BES Client
installed. They also found many unauthorized wireless routers that employees
had brought from home, which of course were immediately identified and
terminated.

More information about the BES Asset Discovery site is available at:
<http://support.bigfix.com/bes/sites/assetdiscovery.html>
http://support.bigfix.com/bes/sites/assetdiscovery.html

** SANS Top Vulnerabilities Fixlet site updated for 2006:
The SANS Top 10 Fixlet site (part of the new "Security Standards and Best
Practices" bundle) has been revised to migrate to the newly announced
vulnerability list. BigFix will be modifying and adding additional Fixlet
messages, Tasks, and Analyses to the "SANS Top Vulnerabilities to Windows
Systems" site to cover the updated Top Vulnerabilities in Windows Systems. 

Several tasks (ID 8001~8004) in the "SANS Top Vulnerabilities to Windows
Systems" site will be removed as part of this update. SANS information
available in all "Patches for Windows" sites will also be updated to reflect
this new list. This change only affects the Fixlet message description and
does not affect functionality. BigFix is planning to publish this change on
February 22nd, 2006. Customers subscribed to the affected sites are
encouraged to review the existing content and make any necessary changes in
their environment to prepare for the update.

Additionally, BigFix is planning a future content offering "Vulnerabilities
to Windows Applications" based on the new SANS Top Vulnerabilities in
Cross-Platform Applications list. This new Fixlet site will provide updates
to common Windows applications. We will announce when this new Fixlet site
is available.

As a note, we are pleased to have been recognized as a top solution provider
by the SANS Institute ( <http://www.sans.org/top20/2005/tools.pdf>
http://www.sans.org/top20/2005/tools.pdf). More information about SANS and
the new Top Twenty list is available at:
<http://www.sans.org/top20/2005/tools.pdf> http://www.sans.org/top20.

** New "Vulnerability Assessment and Remediation" bundle announced:
Several new Fixlet sites have been released as part of the new
"Vulnerability Assessment and Remediation" bundle. The new Fixlet sites are
currently in limited distribution and are designed to assess vulnerabilities
for Unix, Linux, and Windows (non-patch vulnerabilities). 

Contact your sales engineer (or sales at bigfix.com) for information on how to
obtain these different sites to use in a trial. You can trial these Fixlet
sites in either a small lab setting or on your production deployments.

BigFix Product Team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20060203/e1c49097/attachment.html