We don’t want our customers to be victims of software vulnerabilities in this age of Internet. Every day and every where security is a big concern. Many of us do not believe that a small security hole left unnoticed on our boxes can turn out to be a critical issue that could bog down the server.
Auditing, analyzing, assessing and profiling of our IT infrastructure is a routine job for all of us. However, as you can imagine, isolating vulnerabilities and ‘hack-proofing critical data is not an easy job in a shared server environment.
Tenable’s Security Center has made our job lot easier by inventing Nessus Scanner. Nessus vulnerability scanner is one of the best tools we have come across so far. Most of the security analysts and sever administrators like this tool very much due to its high speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis. It’s assessment reports your servers security posture in detail. And with their latest release, the speed of Nessus scan has pretty much improved. Most of the scans which I have done recently were over in less than 25 Minutes.
Tenable’s security engineers have managed to make recommendations for all severity problems reported by Nessus. This helps us to alert the concerned parties about outdated software and security patches which are missing on our box. We can also apply the required configuration changes to our software implementations.
Most of the Web hosting companies would like to provide PCI Compliant services to their customers who do a lot of online financial transactions with their websites. Payment Card Industry Data Security (PCI DSS) compliance test is what your server has got to clear in order to be compliant to this standard.
We have been using Nessus scanner to apply tweaks to our clients servers and they are happy to let their customers transact via a PCI compliant server.
Thanks to Sijin and Prasad for helping me with this post.
