RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)
From: Frederick M Avolio (fred_at_avolio.com)
Date: 02/26/04
- Previous message: Marcus J. Ranum: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- In reply to: Ben Nagy: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- Next in thread: Don Parker: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Ben Nagy" <ben@iagu.net>, <firewall-wizards@honor.icsalabs.com> Date: Thu, 26 Feb 2004 17:27:58 -0500
At 03:06 PM 2/26/2004 +0100, Ben Nagy wrote:
>Intrusion Prevention can be done at a number of places
>
>1. The Firewall
>2. The Network (inline IPS lives here)
>3. The Host (cross platform issues here!)
>- 3a. The Host Network level (TDI or driver stuff, where the current PFWs
>live)
>- 3b. The Host Kernel / Memory Mangement level (systrace, pax, and their
>windows friends)
4. The physical room/building.
5. The policies and procedures.
Sorry. I agree with Ben, but wanted to point out that the stuff that isn't
sexy must not be forgotten. (I mean 4 and 5 here, not *me*. :-))
Fred
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Marcus J. Ranum: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- In reply to: Ben Nagy: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- Next in thread: Don Parker: "RE: IPS (was: [fw-wiz] Sources for Extranet Designs?)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
