248 Vulnerability ManageMent
For example, the security standards may state that all file shares
require authenticated access. However, a specialized “swarm analysis”
vulnerability report shows a high vulnerability score for a category called
access controls. Drilling down into this area, the security manager finds
numerous instances of file shares allowing write access to everyone.
Knowing that security awareness training has not resulted in any
greater level of compliance, a technology alternative can be considered.
In this example, a group policy object (GPO) in Active Directory
might prevent further creation of such open file shares. is is a no-
cost solution to what could be a critical vulnerability problem.
One might wonder why such