[Micronet] Secunia PSI now available to the campus

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

[Micronet] Secunia PSI now available to the campus

Allison Henry

System and Network Security (SNS) is pleased to announce the
availability of a new tool for automating the process of keeping
browsers, plug-ins, and other 3rd party software up-to-date on Windows
computers. Secunia Personal Software Inspector (PSI) is a security
scanner which identifies programs that are insecure and need updates,
and even automates the updating of many of these programs. This
software, normally freely available for personal use only, has been
site-licensed for use on all UC Berkeley systems.

Personal users can obtain Secunia PSI directly from Secunia:

http://secunia.com/vulnerability_scanning/personal/download_psi/

For campus-owned systems, a custom installer for Secunia PSI is
available through Software Central:

http://ist.berkeley.edu/software-central/secunia

For more information on Secunia PSI:

http://secunia.com/vulnerability_scanning/personal/

FYI, we understand that many campus business applications require older
and insecure versions of browsers and plug-ins for compatibility.
Secunia PSI may identify and update these products to secure versions
that are not compatible with campus applications. We added a warning
about this to the Software Central download site, along with
instructions for disabling auto-update:
https://security.berkeley.edu/node/259

Please send us feedback, and we hope you find this product useful!

--
Allison Henry
System and Network Security
University of California, Berkeley
http://security.berkeley.edu

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] Secunia PSI now available to the campus

Lucy Greco-2
 Would this be the personal version of big fix for home or personal systems not owned by the campus


Lucy Greco
Assistive Technology Specialist
Disabled Student's Program UC Berkeley
(510) 643-7591
http://attlc.berkeley.edu 
http://webaccess.berkeley.edu


-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of Allison Henry
Sent: Friday, February 24, 2012 12:01 PM
To: 'Micronet group micronet'
Subject: [Micronet] Secunia PSI now available to the campus


System and Network Security (SNS) is pleased to announce the
availability of a new tool for automating the process of keeping
browsers, plug-ins, and other 3rd party software up-to-date on Windows
computers. Secunia Personal Software Inspector (PSI) is a security
scanner which identifies programs that are insecure and need updates,
and even automates the updating of many of these programs. This
software, normally freely available for personal use only, has been
site-licensed for use on all UC Berkeley systems.

Personal users can obtain Secunia PSI directly from Secunia:

http://secunia.com/vulnerability_scanning/personal/download_psi/

For campus-owned systems, a custom installer for Secunia PSI is
available through Software Central:

http://ist.berkeley.edu/software-central/secunia

For more information on Secunia PSI:

http://secunia.com/vulnerability_scanning/personal/

FYI, we understand that many campus business applications require older
and insecure versions of browsers and plug-ins for compatibility.
Secunia PSI may identify and update these products to secure versions
that are not compatible with campus applications. We added a warning
about this to the Software Central download site, along with
instructions for disabling auto-update:
https://security.berkeley.edu/node/259

Please send us feedback, and we hope you find this product useful!

--
Allison Henry
System and Network Security
University of California, Berkeley
http://security.berkeley.edu

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.



 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.
Reply | Threaded
Open this post in threaded view
|

Re: [Micronet] Secunia PSI now available to the campus

Allison Henry


On 2/24/2012 12:03 PM, Lucy Greco wrote:
> Would this be the personal version of big fix for home or personal
> systems not owned by the campus

There's some significant differences between Secunia and TEM/BigFix, so
I would not see them as equivalent products even though they address the
same problem with unpatched 3rd party software. Secunia PSI is largely a
"self-service" tool, where users run the software locally to find and
install software updates. TEM/BigFix is an endpoint management tool,
where administrators control software updates and other configurations
on the client systems.

In the distributed computing environmnet at UC Berkeley, Secunia PSI can
be a valuable tool on both personal and university-owned machines, which
is why we pursued a license agreement allowing installations beyond
personal use. For centrally managed workstations with existing patch
management solutions (such as BigFix), Secunia may not be helpful,
however I would appreciate feedback from anyone using the two products
together.

FYI there is another, managed component to Secunia, known as Secunia
CSI, that can be used in a managed environment to track clients and push
out 3rd pary updates via WSUS. We do not have any immediate plans to
implement a CSI service, but we are investigating the tool.

Allison Henry
System and Network Security
University of California, Berkeley
http://security.berkeley.edu

 
-------------------------------------------------------------------------
The following was automatically added to this message by the list server:

To learn more about Micronet, including how to subscribe to or unsubscribe from its mailing list and how to find out about upcoming meetings, please visit the Micronet Web site:

http://micronet.berkeley.edu

Messages you send to this mailing list are public and world-viewable, and the list's archives can be browsed and searched on the Internet.  This means these messages can be viewed by (among others) your bosses, prospective employers, and people who have known you in the past.