It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Network Security

Support Services

Barracuda Vulnerability Manager

Overview Documentation

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

Reporting Server

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

Avoiding Possible Scanning Side Effects

Last updated on 2018-07-03 11:35:06

During the scan process, Barracuda Vulnerability Manager tests all of the functionality of your web application, including pushing buttons and entering text. This might lead to unintended results, depending on the configuration of your web application and the scan.

Consider the following suggestions to stave off potential side effects:

Scan using non-administrative credentials. Scans run with full administrative credentials will have privileges to access all areas of your web application. This could result in changing settings or states.

- If you want to scan using administrative credentials, scan a staging or test environment. In this way, the scanner has full access to all features, but you eliminate any risk of side effects on your production environment.

Exclude sensitive areas if there are areas of your application that you do not want tested. When creating a new Barracuda Vulnerability Manager scan, use the Exclusions tab to exclude IP addresses, URL patterns, and file extensions.
Back up your data first. If you are concerned about your data, back it up before starting a scan.

Barracuda Vulnerability Manager includes built-in overload protection. If, during the scan, your server exhibits signs of overloading, such as slow response time, Barracuda Vulnerability Manager will automatically reduce scan speed. For your protection, this feature cannot be turned off.