cancel
Showing results for 
Search instead for 
Did you mean: 
Moderator bkelly Moderator
Moderator

We Still Want Your Ideas about Software Vulnerability Management Products!

You may notice that we don’t currently have a replacement for the Ideas functionality here in the new community. This is temporary-- we are planning to launch ideation as a feature of this new community later this summer. In the meantime, please this discussion forum to continue to provide product feedback on Software Vulnerability Manager (SVM) and Software Vulnerability Research (SVR). Please don’t worry about reposting ideas you may have previously submitted; when the ideation capability is reintroduced here it will include any feedback you may have previously provided.

41 Replies
Moderator bferring Moderator
Moderator

Re: We Still Want Your Ideas about Software Vulnerability Management Products!

I recently had a customer that suggested the following enhancements, most around blacklisting:

  • Would like to schedule the DB cleanup to cleanup aged scan results rather than manually having to do this every month
  • Would like to add the ability to right-click and add a file path to blacklist
  • Blacklist report to be able to review just in case
  • Ability to import/export a blacklist and have a global blacklist for all users
  • Randomization of agent scans from 60 minutes to 120 minutes to avoid 500 errors during heavier scan times
Bill Ferring
Senior Consultant: FNMEA - FNMS - FNMforSAP - SVM/SVR
Moderator bkelly Moderator
Moderator

Re: We Still Want Your Ideas about Software Vulnerability Management Products!

Thanks Bill. I appreciate you passing these on, particularly the blacklist related items. As for the others, is there something beyond what we currently offer that the customer was looking for beyond our current functionality?

Moderator bferring Moderator
Moderator

Re: We Still Want Your Ideas about Software Vulnerability Management Products!

As for the Database Cleanup, they want to be able to schedule say a 30 day cleanup to run weekly without having to go in and manually click Execute Now (remove the manual process).

 

As for the scan randomization, the upper limit is 60 minutes, but even with 60 minutes, some of their scans will error out when trying to upload scan results with a HTTP 500 error (during heavy scan volume). They're using the in-memory CLI scan method via SCCM using -si 60. They scan over the weekend within certain windows (they do not want to scan on weekdays). I had suggested they could break the scan groups up further, but they're already broken up into 3 collections to eliminate some of the errors with results not reporting back to the cloud. The simple fix in their opinion would be to have the option to randomize over 2 hours (or 3 hours...have a higher upper limit).

Bill Ferring
Senior Consultant: FNMEA - FNMS - FNMforSAP - SVM/SVR
0 Kudos
Moderator bkelly Moderator
Moderator

Re: We Still Want Your Ideas about Software Vulnerability Management Products!

Thank you for the additional details!

0 Kudos