chast is referring to the System Security Status and the information displayed when you click the "details..." link. That produces a huge and comprehensive list of security items which the Center for Internet Security provides suggested settings for in order to maximize online security. I have reviewed the list and while achieving a high score may be desirable, many of the items which presently keep my score low (such as a Guest and Administrator accounts which have not been renamed and account passwords which do not have an expiration date) represent what I consider minimal risks based on the physical location of my computer (accessible only to me).
I have run Belarc 7.0m, not sure which section you are referring to; do you mean the section marked missing MS security hotfixes (Mine says all are installed).
I don't have such a link, I think because I have XP home. At the top there is System security status with 3 boxes in line next to it. The first one says CIS Benchmark score but no link, it has a ? and says 'available only for Windows 2000, XP pro and 2003'. Presumably that is the one you mean? The second box tells me I have AV protection with a link to the details lower down the page, the third similar for MS security hotfixes.
I upgraded and I too got a "low" score. But, I'm the only one that uses it and it's has what I consider "tight" security and has been tested at Norton and comes back with no additonal recommendations.
It looks to me like Belarc is selling other software and some of the items flagged are not really an issue for most. I've got that from several sites that will "scan" your PC and offer suggestions and it's always that you need the software they are selling.
Many thanks for the feedback. I was at first alarmed by the low score when I clicked on the details for "CIS Benchmark Score", but when I considered what Denny said, I decided the individual item/s listed on my report are not an alarming vulnerability for my computing environment. I see a couple of items I think I will modify, but will hold off on the rest for now.
I am impressed with this new Belarc feature, and think it has great potential as a supplemental security monitor. It will be interesting to see how future revisions develop.
JR, I have that MS update monitor program, but this new Belarc is a different approach.
Yes, thanks. MSBA is somewhat complementary. It checks for security updates, but also gives advice on IE security settings, account passwords and security for other MS apps, such as office, MDAC and several others. It needs Server service to be started.
For XP pro it also has a section on auditing (skipped on my system)
Message Edited by JRosenfeld on 05-20-2005 11:13 PM
Denny Denham
2 Intern
•
18.8K Posts
0
May 20th, 2005 19:00
chast is referring to the System Security Status and the information displayed when you click the "details..." link. That produces a huge and comprehensive list of security items which the Center for Internet Security provides suggested settings for in order to maximize online security. I have reviewed the list and while achieving a high score may be desirable, many of the items which presently keep my score low (such as a Guest and Administrator accounts which have not been renamed and account passwords which do not have an expiration date) represent what I consider minimal risks based on the physical location of my computer (accessible only to me).
JRosenfeld
2 Intern
•
4.4K Posts
0
May 20th, 2005 19:00
I have not used that. I note it is only for XP SP1, not SP2.
Have you thought about using Microsoft baseline security analyzer?
http://www.microsoft.com/downloads/details.aspx?FamilyID=b13ebd6b-e258-4625-b0a3-64a4879f7798&DisplayLang=en
I have run Belarc 7.0m, not sure which section you are referring to; do you mean the section marked missing MS security hotfixes (Mine says all are installed).
Denny Denham
2 Intern
•
18.8K Posts
0
May 20th, 2005 20:00
Clicking the details link provides a detailed breakdown, the first portion of which is shown here
Message Edited by Denny Denham on 05-20-2005 02:46 PM
JRosenfeld
2 Intern
•
4.4K Posts
0
May 20th, 2005 20:00
I don't have such a link, I think because I have XP home. At the top there is System security status with 3 boxes in line next to it. The first one says CIS Benchmark score but no link, it has a ? and says 'available only for Windows 2000, XP pro and 2003'. Presumably that is the one you mean? The second box tells me I have AV protection with a link to the details lower down the page, the third similar for MS security hotfixes.
fireberd
9 Legend
•
33.4K Posts
0
May 20th, 2005 21:00
I upgraded and I too got a "low" score. But, I'm the only one that uses it and it's has what I consider "tight" security and has been tested at Norton and comes back with no additonal recommendations.
It looks to me like Belarc is selling other software and some of the items flagged are not really an issue for most. I've got that from several sites that will "scan" your PC and offer suggestions and it's always that you need the software they are selling.
chast
121 Posts
0
May 20th, 2005 21:00
Many thanks for the feedback. I was at first alarmed by the low score when I clicked on the details for "CIS Benchmark Score", but when I considered what Denny said, I decided the individual item/s listed on my report are not an alarming vulnerability for my computing environment. I see a couple of items I think I will modify, but will hold off on the rest for now.
I am impressed with this new Belarc feature, and think it has great potential as a supplemental security monitor. It will be interesting to see how future revisions develop.
JR, I have that MS update monitor program, but this new Belarc is a different approach.
Thanks again, and have a good weekend.
ZoneAlarm 5.5.094. NortonAV 2003. Firefox 1.0.4. Ad-Aware SE. Microsoft AntiSpyware (Beta). CWShredder.
JRosenfeld
2 Intern
•
4.4K Posts
0
May 20th, 2005 21:00
Yes, thanks. MSBA is somewhat complementary. It checks for security updates, but also gives advice on IE security settings, account passwords and security for other MS apps, such as office, MDAC and several others. It needs Server service to be started.
For XP pro it also has a section on auditing (skipped on my system)
Message Edited by JRosenfeld on 05-20-2005 11:13 PM