> Does anyone hae any hints on setting this up on Linux? I looked at
> their website and the system is primarily designed for SunOS and IRIX,
> neither of which I have. I have a RedHat 6.1 box sitting next to me
> and would like to use it to scan a (primarily) windows NT network,
> espeially now that SAINT looks for the RDS bug in IIS.
To ensure that all RDS vulnerabilities are detected,
I'd suggest raising the timeout value for the http.saint
module. 60 works for me. The default setting tends to
timeout due to the recent increase
in the number of www vulnerability checks. (This will
be fixed in a future release.)
Change the "medium" timeout value in Configuration
Management, and then exit and re-start SAINT.
(You must re-start in order for the change
to take effect.) Alternatively, you can specify a timeout
value specifically for the http.saint module in
the %timeouts array in config/saint.cf.
In response to your original question, SATAN (the
precursor of SAINT) was originally tested on Solaris
and IRIX, but it will run on almost any UNIX/Linux
that has PERL 5.x.
Information Security Specialist
World Wide Digital Security, Inc.
Sent via Deja.com http://www.deja.com/
Before you buy.