The Web    Google
Citadel's Latest Automates W2K3 Vulnerability Remediation

Citadel's Latest Automates W2K3 Vulnerability Remediation
January 27, 2004

Server security management vendor Citadel Security Software updates its Hercules automated vulnerability remediation product to include certification for Windows Server 2003.

Hercules 2.2 from Citadel Security Software adds Windows 2003 certification to the automated vulnerability remediation and policy compliance product. The certification ensures that mitigation of any vulnerabilities in the Windows family of products takes place via an automated process.

Testing to achieve the certification was conducted the VeriTest, the testing division of Lionbridge Technologies, the only lab so far authorized to test applications for Microsoft's "Certified for Windows" program. The standards used for the certification were established by Microsoft together with VeriTest to ensure that products run reliably on Microsoft Windows.

Hercules automates the resolution of five classes of vulnerabilities: unsecured accounts, misconfigurations, backdoors, unnecessary services and software defects. Hercules carries remediation signatures for Windows, Sun Solaris and Linux Red Hat platforms. The product accepts output from vulnerability scanners, and feeds reports to security administrators, who select which vulnerabilities to remediate, according to a schedule they determine.

"One of the biggest problems we find are account-related issues, from accounts for users no longer employed or accounts that have too many rights," says Carl Banzhof, CTO of Citadel. "The second most frequent type of vulnerability we is misconfiguration, often of a new workstation or server installed with default settings."

Other enhancements in Hercules 2.2 include: improved navigation, to guide users via wizards through specific tasks to complete Hercules functions; the V-Flash Security Center portal within the administrator console, which provides access to security information from the Citadel research team; enhanced searching so that users can find vulnerabilities and remediations by device and industry; improved tracking and reporting to update mitigation status throughout the remediation process; and remediation support for RedHat Linux versions 8 and 9.

The product is priced per seat starting at $129 per seat for workstations, with volume discounts. Server pricing starts at $995 per server. A company with 10,000 devices to cover, 10% of them servers would pay approximately $1 million for the software.

One Citadel customer with some 60,000 devices spent $4.2 million to clean machines affected by the Blaster worm last year, Banzhof says.

  • AntiOnline Security Spotlight: IDS with an Open Source Twist
  • Enterprise IM Spurs Privacy Concerns
  • 1/6: Rbot-SX Worm Spreads to Shares
  • How Spyware Took the Next-Gen Threat Crown
  • Corporate Data Leaks Spur Interest in Storage Security
  • Virus Alert: Optix.Pro Trojan Rated Low Threat
  • 1/18: Rbot-TS Worm Spreads to Weak Shares
  • 2/3: Rbot-VD a Worm and a Trojan
  • DOJ Scores First Criminal P2P Convictions
  • 10/20: Spybot-DF an IRC Backdoor Worm
  • Teen Held For Allegedly Swiping Code
  • Cheap Security Camera