Spiceworks

Posted by beakersoft | Posted in spiceworks | Posted on 13-08-2007

4


Due to the fact we are going to get an Audit, we have recently installed Spiceworks on our network. For those who have never heard of it, Spiceworks is a web based appliction that gathers information ion all the devices on your network.

Using WMI it gets hardware and software information for each device, and records it all in a database. We are going to use it for its software auditing purposes, it will give you lists of sortware installed on your network, and you can upload details of your licences into it to keep track of what software you have that is legal. I think it will even warn you if some new software appears that’s new or unlicensed.

The thing that makes Spiceworks different from its rivals, is that fact that it is completely free. The only thing that it does do is display advertisements in the browser console. Now, call me daft but i’m quite prepared to put up with an advert (they dont take up much room or distract you much) if quality software like this is free.

Some of the auditing tools we have used in the past haven’t been very good, there main problem used to be picking up windows components and listing them as separate software, so you ended up with a huge list that meant nothing. Spiceworks manages to filter all this out into a list that actually makes sense and work with.

The only problem we had was upon running a scan, there were quite a few errors (about 20% of machines). They said something like cannot get authenticated on the client. There is a page you can call up on the client machine that will attempt to diagnose the problem (urlofspiceworks/fix), upon running this we could see it was trying to authenticate on a different machine. A quick look in the reverse DNS lookups told us that the IP address of our problem client was in DNS numerous times with different names.

A quick clean up of DNS and a re-scan in Spiceworks, and virtually all the problems had gone. For small to medium sizes networks, I would recommend downloading it and giving it a try. Get it from www.spiceworks.com

Comments (4)

Hello:

I am just wondering if this model makes sense for the advertiser. Are you likely to be influenced by the ads you see while using this software?

Thanks.
-rakesh

Hi,

I think it does make sense as you know without doing any research who is going to be viewing the ads, so they can be specifically targeted.

When i’m normally viewing a web site its very rare i would click on an ad, but since i’ve been using Spiceworks i’ve already clicked on a couple of them

cheers
Luke

And since the ads are it related, it is logical to go to the IT admins. They are the ones that buy the equipment. Targeted advertising is smart. Hope this product survives. It has potential.

The only issue with Spiceworks is that it seems to load the inventory info to an unknown server that is then access via the executable. It does not provide the flexibility of being able to manage the data and there is no way to know where the data is really located. That itself is a real security threat unless the data is embedded within it, I don’t see it as a secure tool. I prefer OCS Inventory because I know where my data is and I can access it and modify it and create whatever reports I need by manipulating the data. Best of ALL, I know is in a secure server that we configured and continously test for vulnerabilities.

Write a comment

Comments links could be nofollow free.