< Non-M$ Patch Management | New IE 0day >
Jan 22

Shavlik and the mound of FUD

Masters 1 Comment »
Masters I would like to nominate Mary Landesman and Shavlik for the "Quality FUD" award, for their paper entitled Security Patch Management: Breaking New Ground. The subtitle is "A discussion of agent and agentless technology", although how this relates to the title is beyond me.

In this eight page paper with precisely five references (of which one, while using the word 'agent' is clearly referring to autonomous semantic-web based agents and not client/server architecture agents) she manages to make a plethora of unsubstantiated claims plainly meant to sell Shavlik's agentless technology. Her main ploy is to make it sound like installing agents to every machine is hard work, and so having to do that every time there is a patch emergency would be bad. Of course you only need to install them once, but lets not confuse 'facts' with the truth. She doesn't seem to realise that if her Shavlik software can deploy executable patch content it could probably deploy agents too, *sssh* don't tell.

This isn't a bash at Shavlik software or an endorsement of agent based solutions. She even quotes her CEO as saying he thinks the whole debate is a "red herring", I prefer the term "a load of crap". If you are logging into a box remotely with administrator rights, then you aren't doing much different from an agent, the code just happens to be transmitted every time instead of stored locally.

I wonder how many morons they fool with this faux-academic ninja-marketing technique?

Posted by Dominic White

Last modified on 2006-01-22 22:23

0 Trackbacks

Trackback specific URI for this entry
  1. No Trackbacks

1 Comments

Display comments as(Linear | Threaded)
  1. Ed Daniel says:
    03/03/2006 12:02:05 AM

    One of the common things people get confused about when talking about 'agentless' technology is that 'agentless' technology IS dependent on 'agents'.

    The dependency is obvious when one looks at how agentless solutions interrogate and interact with their targets - often they are relying on locally installed agents such as SNMP or WMI or...

    One of the benefits of agentless technology is the zero-deployment of extra software - legacy help desk solutions got caught out with this problem as until a device had a proprietary agent deployed it meant they were unable to monitor/manage/remediate that device.

    In an ever-changing IT ecosystem the agentless approach can, if sufficiently powerful i.e. fast, provide a superior approach to agent-based solutions and requires less management overhead than deploying an agent-based solution across the enterprise.

    I guess the jury is still out but all sorts of people are starting to sing the praises of agentless technology without realising (or perhaps hiding) the point I made at the beginning - agentless does not mean without use of agents, just yet anyway.

Add Comment


E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA