|
|
Toll Free: (866) 407-5279 Direct: (651) 407-5279 |
|
|
|
Toll Free: (866) 407-5279 Direct: (651) 407-5279 |
|
UpdateEXPERT6.x supports DMZ needs with Leaf-Agents (Windows) and SSH (Solaris and RedHat Linux). Leaf connectivity is supported via encrypted packets over user-specified Master-Agent/Leaf-Agent port assignments. Reliance on Windows RPC protocols and services is greatly reduced, providing a far more secure environment for Master/Leaf communications and data transmission. In a DMZ, "Leaf Agents" are typically locally (as opposed to remotely) installed on clients. SSH uses public/private key files and packet encryption to provide improved security in Unix environments.
Leaf-Agent advantages of interest in the DMZ include:
Secure Master/Leaf connections
Encrypted packet traffic
User-definable ports (which the firewall would "allow")
Independent patch downloading
Localized query and other intelligence, resulting in reduced network I/O
For Solaris and RedHat Linux, SSH advantages of interest in the DMZ include:
Secure Master/Leaf connections (SSH with public/private key files)
Encrypted packet traffic (SSH)
See "When should I use Leaf Agents" for links to more information, like disconnected-machine support.
Note: Windows Leaf-Agent targets support SecurityEXPERT (when connected to the network).
For RedHat Linux or Sun Solaris clients, see "Getting Started with RedHat & Solaris".
Using the Internet, the UpdateEXPERT Master-Agent regularly retrieves database updates (checking every 6 hours by default). The database is updated daily with new patches across multiple platforms (Windows/Unix) and languages (for Windows). Also, new SecurityEXPERT templates are made available under the "Security Templates" tab for downloading to support settings management (hardening of systems). To ensure un-impeded operations now or in the future, see:
