Computer Vulnerability Scanning
The Computer Protection Program (CPP) continuously scans LBNL computers for security flaws, a process common referred to as "vulnerability scanning". CPP checks for flaws ranging from bugs in services that allow remote code execution to accounts with weak passwords. Checks are performed using a variety of software including Nessus, Nmap, and custom written scripts.
Security incidents cost time and money. If your system is compromised it must be backed up, rebuilt from original media, applications reinstalled, and data restored. Recovery can be a time consuming process and your computer will be off-line for the duration. There are also costs to the Computer Protection Program to detect and respond to the security incident. One must also consider the impact a system compromise has on the reputation of your project and LBNL.
CPP scanning discovers vulnerabilities ahead of the attackers. By discovering these vulnerabilities in advance, CPP can notify you (visit NETS to update contact information for your hosts) about the vulnerability. The vulnerability can then be fixed before an malicious attacker exploits it. In addition, when priority warrants, CPP will isolate your host from malicious traffic to prevent it from being compromised while the vulnerability is being removed. CPP scanning can save you time and money by preventing a security incident on your host.
Related Links
Service Announcements
None
Rates/Service Level Agreements
Overhead funded
Policies/Guidelines/Terms of Service
None
FAQ
None
Contact
CPP at cppm@lbl.gov
IT Help Desk
For technical support, please call the IT Help Desk at 486-4357 or go to the IT Help Desk Web site.
