After releasing PlateSpin Recon 3.6 in April, Novell announced PlateSpinRecon 3.7. The new version includes the following enhancements:

• Support for IBM AIX 5.2, 5.3 and 6.1
• Collection of additional disk performance metrics
• Identification of disk type attached to the workload (local, iSCSI, FC)

Unlike Lanamark Suite, PlateSpin Recon continues to use agents that can affect the security, performance and compliance of target systems. However, the user guide seems to contradict itself:

• PlateSpin Recon does not require the installation of agent software, eliminating the need to physically touch data center servers. All performance and inventory data is collected via standard OS instrumentation capabilities. (p. 11, 16)
• Windows: PlateSpin Recon copies an executable onto the machine being inventoried to the a directory within ADMIN$. PlateSpin Recon runs the executable through WMI or a remote service. (p. 165)
• Linux/Solaris: PlateSpin Recon uses the SCP protocol to transfer a platform-specific inventory binary and libraries to the /tmp directory of the machine being inventoried. (p. 164)

An agent, such as the one deployed by Novell PlateSpin Recon, can set off intrusion detection systems and void compliance of locked down target systems in enterprise environments. Furthermore, if a malicious third-party gains access to the host running Novell PlateSpin Recon and substitutes the executable/binary with malicious software (malware), then the malware can be launched on all systems accessed by PlateSpin Recon with administrative privileges. This single point of attack makes the enterprise particularly vulnerable to a security breach.

To avoid a slap on the wrist from customers, most solution providers would opt-in for an agent-less approach.