|
Site Admin |
|
Joined: Mon Jun 07, 2004 11:48 am Posts: 1964 Location: Brisbane, Australia
|
[quote]Are they validate somehow ? The audit result must be valid XML. [quote]Will someone be able to make mess by sending corrupt/malicious xml to submit url?They can certainly do that. Any changes to a device will be recorded in Open-AudIT though. So you'll see that a "bad" audit was submitted pretty quickly. [quote]If so - are there known ways to protect from it? Blessed subnets are your answer. [quote]Can I modify blessed subnets to accept only from network only when it's is audited ? I suppose we could look at something like that. Only accept data when a discovery run is occurring. I'll make a note to give that some thought but to be honest - if you have users in your organisation doing this you have more important issues to worry about!
_________________ Support and Development hours available from [url=https://opmantek.com]Opmantek[/url]. Please consider a purchase to help make Open-AudIT better for everyone.
|
|