The Security Administrator's Integrated Network Tool (SAINT), an updated and enhanced version of SATAN, is designed to assess the security of computer networks.

This version features a new custom scan level, giving you complete control over which probes SAINT will run, all from the graphical user interface.

To set up a custom scan:

• Go to Configuration Management or Target Selection.
• Select Set up custom scan. A list of probes will appear.
• Reset the configuration to one of the default levels, if desired.
• Select the probes you want to run.

Also new with this version:

• Improved FAQ and documentation to include instructions on using rules/drop to ignore false alarms
• Updated to CVE 20001013
• Check for folder traversal vulnerability in IIS 4.0 and 5.0
• Check for JRun server vulnerabilities
• Check for iPlanet Directory Server and Certificate Management System
• Check for hex-encoded dot-dot-slash vulnerability in web servers
• Check for dot-dot-slash vulnerability in Web+
• Check for HTTP PUT vulnerabilities
• Fixed compilation problem on BSDI (thanks to Lex)

Complete Story

Related Stories:
Red Hat Security Advisory: Updated Secure Web Server packages now available (Oct 28, 2000)
Red Hat Security Advisory: Updated apache, php, mod_perl, and auth_ldap packages available (Oct 24, 2000)
Linux-Mandrake Security Update Advisory: apache update (2nd update) (Oct 19, 2000)
Linux-Mandrake Security Update Advisory: apache update (Oct 18, 2000)
MandrakeSoft Security Advisory: Apache (Oct 12, 2000)
Apache Module Registration: Covalent Antivirus for Apache(Sep 25, 2000)