SOS - ISS Scanning Request



Policies & Guidelines SOS Services Incident Reporting Security Guides Setting Passwords SOS Staff FAQ ITS Site Search: ITS sponsors an annual security awareness campaign	ISS Request Form Complete the following web form to request that Information Technology Services Security and Operation Services help you identify vulnerabilities, misconfigurations, and backdoors in software and operating systems on your machine(s). There is no charge for this service. You must be a network contact to request a scan. Requests made by non-network staff members will be verified by appropriate contacts prior to scanning. Scan results will only be returned to network contacts but the information may be shared with system administrators of affected machines, and with management in their units as appropriate. (Repeated, unauthorized scan requests (e.g., abusive activity) may result in referral to the OJA or OHR). If the IP address(es) you are having scanned host Web application(s), please also request a Web application scan * = required field Contact's name: * Contact's phone number: * IP Address(es) or IP range of machine(s) you wish to have scanned: * Are any of the IP address(es) being scanned servers? If so, please provide the IP address of each server: Reason for scan request: * Routine vulnerability assessment SSN security verification HIPAA security verification VISA verification Connectivity to AIS General Interface (GI) Scan requested by Penn State Internal Auditors Verification of security of new server, workstation or image build Other (specify): Any specific vulnerabilities you wish to be scanned for: (Otherwise, a default scan including the most common vulnerabilities will be performed against your system) Is machine behind a firewall? * No Yes Would you like a non-invasive scan? Yes (default setting - denial-of-service and other potentially harmful tests will not be performed against your system.) No Is there a timeframe you wish to have the scan run during? (e.g. Overnight, During business hours only if machines are shut down at the end of the day, etc.) (You may include a timeframe but please do not ask for a specific date for the scan, since requests are processed in the order that they were received. SOS will attempt to scan during the timeframe requested if possible, barring other higher priority security incidents. Yes No Would you like SOS to call before beginning the scan?* Yes No Additional comments / requests: (Penn State authentication required).

About the units of	The Pennsylvania State University © 2005. All rights reserved. Alternative Media - Nondiscrimination Statement This site maintained by Security Operations and Services, a unit of Information Technology Services. For assistance, contact Security Operations and Services. Provide site feedback to the Security Webmaster. Last revised: 04/22/2006