According to my PCI Host Details Report, I went from 100% PCI compliance to 55% compliance. All my assets have a PCI Compliance Status of Pass but the host report has started marking many Ciphers as failures like: Undefined CVE, TLS/SSL Server Supports The Use of Static Key Ciphers Undefined CVE, Diffie-Hellman group smaller than 2048 bits Undefined CVE, TLS/SSL Server Is Using Commonly Used Prime Numbers Just last week these were not failures and now they are, but just in the PCI Host Details report. When I look at the assets in InsightVM they all have a PCI Compliance Status of Pass. Am I missing something?
Posted by Scott Hoopes 4 months ago
I just made a copy of a RHEL 7 CIS 2.2.0 Level 1 Server Policy and scanned a server. 115 rules passed. I then disabled the AIDE section (2 rules) and ran the scan again. 108 rules passed - so additional unrelated (ntp, chrony, etc.) checks now fail... I see similar results with the equivalent CentOS policy. Anyone else seeing this? Rob.
Posted by Rob Lawley 5 months ago
Is there a way to set an exception to recursively accept vulnerabilities from previous versions than the latest exception version? Example being, if we have a legacy app that requires Java 7, would there be a way to put in exception that would remove all vulnerabilities to a specific version? I know I can create an exception for all vulnerabilities that contains "Java" but that seems ugly. Also would putting an exception in like this also put exceptions in for all new vulns that contain Java or just when the exception was put in?
Posted by Robert DeBellis 5 months ago
I have in my infrastructure several servers with multiple IP addresses and NIC interfaces, each facing a different network segment that are scanned for vulnerabilities due to the fact that different services are provided on each network. Is there a form of InsightVM correlating this information and counting these diferent IP addresses belonging to the same Host as only 1 Asset?
Posted by Paulo Ferreira 5 months ago
We need to use Rapid7 VM tool and integrate it with the CA Service Desk manager. Is it possible to do this? Also, I've read about Lieberman's RED software, is it possible to integrate Rapid7 with the help desk via this software?
Posted by Divya Ambwani 9 months ago
I'm evaluating the InisghtVM tool in vulnerability assessment for our small (but certain to grow) Docker container servers. I have not been able to assess the images even though the tool does recognize the servers as container hosts. When I reached out to the group standing up the containers, they explained they are placing and building the images directly on the servers and use no registry. Is it possible for InsightVM to work with this use case?
Posted by Diana Orrick 9 months ago
Hello Can you please explain details between the dashboard that we see post scan vs the masked Dashboard features in the InsightVM platform ? What are the advantage & value that will be provided to the client ? What data is sent to the cloud & does Rapid7 has region specific cloud like one for Asia, UK, Europe, US etc ?
Posted by saurabh about a year ago
Hello Rapid 7 Team, I've Been trying to create a Remediation project and display results. However, I don’t get why nothing is coming up. Not sure if something from the internal side or maybe something isn’t configured correctly? Should I contact my CSM? Been using these steps below as well as the demo for InsightVM. It’s very Straightforward, but I’ll keep trying. Creating a Remediation Project https://insightvm.help.rapid7.com/v1.0/docs/remediation-workflow 1. Create a remediation project from within the Dashboard or from the Projects tab. 2. If you are within the Dashboard, expand the card showing assets by risk and vulnerabilities to view a list of assets. If desired, you can apply an existing filter or create a new query. 3. Select the assets you want to include and add them to create a Static Remediation Project. For Dynamic Remediation Projects, use the asset and vulnerability filters to define the scope of the solutions that will populate the project. 4. Name the project and assign it to one or more Security Console users. DEMO https://information.rapid7.com/insightvm-product-demo-august-thanks.html?aliId=19803371 Any help would be great. Thank you.
Posted by Kenneth Boadu about a year ago
Hi, now I'm testing remediation project in insightVM. I would like to assign the user to each remediation solution. There is "assignee" field in each solutions but I can't find the menu to change this field. Would you please tell how should I operate?
Posted by Yoshiki Eguchi about a year ago