-
Everything you have said seems like the appropriate way to use the client-side certificate in WebInspect, except that if it is saved in the Default Scan Settings there is no need to also set it in Current Scan Settings as those come from the Default. In your case, I am assuming there is no manual intervention needed by the user to use the certificate
-
Regarding your VM configuration, is the NIC in NAT or Bridged mode? I find that having Bridged mode works best in my home LAN (192.168.x.x). I am able to access the AMP URL directly from other workstations, even though they do not share the same Workgroup or Domain name. Sometimes I have to use the IP address for the server, depending on the DHCP refreshes
-
Under normal conditions, WebInspect will not "bleed out" and begin auditing any hosts other than the one named in your Starting URL field. All such hosts will be listed as "Disallowed", found on the Excluded Hosts tab at the base of the Site Tree pane. If you wish for the assessment to expand when finding a link to any specific host
-
Paulo; I have not seen an update either, since perhaps Tuesday November 3rd. There may just be a lull in the check writers' activity. This can happen when there is an alternative project eating up their time, or everyone went to BlackHat. LOL Just be sure your SmartUpdate service address has benn updated to https://smartupdate.hpsmartupdate.com
-
Yes, these are the current service addresses. If you cannot connect to these URLs, verify in your browser that they provide a basic message/response. If you can load them in your browser, then I suspect you need to configure the Proxy Settings found within the same Application Settings area of WebInspect. The WebInspect default is to utilize the proxy
-
This version has been replaced by the puiblic release of 8.0 SP1, 8.0.753: http://www.communities.hp.com/securitysoftware/forums/p/8443/108456.aspx
-
This version has been replaced by the puiblic release of 8.0 SP1, 8.0.753: http://www.communities.hp.com/securitysoftware/forums/p/8443/108456.aspx
-
The WebInspect 8.0 Service Pack 1, version 8.0.753, was released on October 20th 2009. There had been advance notices regarding this release posted to the Messages section of WebInspect's Start Page tab. While there have been changes to the binaries and its factory Default Scan Settings, the upgrade or reinstall will not damage or affect your custom
-
WebInspect 8.0.548 supports 64-bit Vista OS, but it requires certain adjustments. * Disable User account Control (UAC). * Disable themes. * When installing, make sure that you run as Administrator. * Best practice is to manually install both the 32-bit and 64-bit versions of Microsoft SQL Compact Edition (CE) 3.5 SP1. Some users have experienced trouble
-
There is no way to disable an individual check once the audit is underway. The security checks are part of the selected scan Policy, and that data is loaded into the scan data when the audit phase begins. You could include the 500 message as a custom File Not Found (404) signature, which will suppress them all. Alternatively, you could wait until the