Re: Nortel PeriphonicsScanner

From: David M. Zendzian (dmz@dmzs.com)
Date: Wed Dec 14 2005 - 14:37:21 EST


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

It matters on what you are trying to test for? The solaris system or the
phone system. I would look at each separately, then you can use nessus
& other tools (including local solaris auditing tools) to audit the
server, then look at application based tools (appscan, nto spider, etc)
for any web interface. If there are other ports open (sip, ticker info,
logging, etc), then dig into each of those as separate items as well as
I doubt there are any easily accessible tools to audit those custom
services, in fact I would deploy the system with all non-essential
services firewalled off is possible if you are concerned about them.

dmz

Venkat wrote:

>Hi Folks,
>
>Can anybody suggest a Vulnerability scanner for Nortel Networks
>Periphonics Voice processing Series on Solaris.
>Im not sure whether Nessus will be able to do it.
>
>Any comments appreciated.
>
>Regds,
>Venkat
>
>--
>This e-Mail may contain proprietary and confidential information and
>is sent for the intended recipient(s) only.
>If by an addressing or transmission error this mail has been
>misdirected to you, you are requested to delete this mail immediately.
>You are also hereby notified that any use, any form of reproduction,
>dissemination, copying, disclosure, modification,
>distribution and/or publication of this e-mail message, contents or
>its attachment other than by its intended recipient/s is strictly
>prohibited.
>
>------------------------------------------------------------------------------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on your
>website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
>futile against web application hacking. Check your website for vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>-------------------------------------------------------------------------------
>
>
>
>
>
>
>
>

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.2 (Build 2424)

iQA/AwUBQ6B0epcwFRNrWbm9EQI3WwCgya5WKrr/zYHKdQ7f9z7hVx8+4G0AoMEQ
l5A+UPs1pPMhhAoT6hlIxJi8
=HNx7
-----END PGP SIGNATURE-----

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:16 EDT