Re: [fw-wiz] Integrated IDS/IPS/Firewall (Cisco ASA and Juniper ISG)



I believe that open source solutions are also a factor in the consolidation
and eventual demise of security as an "industry." By offering a "free" alternative
they remove wiggle room from the small start-ups at the bottom of the
economy - if you're trying to compete with Symantec or Cisco you get
crushed between "huge" on one side and "free" on the other. "Traditional"
business customers are going to go with the mega-player because it's
the safe bet, while the technically clueful ones will mount an in-house
open source-based effort. The net effect is that "free" becomes the enemy
of "good" by preventing the small vendor from being able to offer a
high-quality low-cost solution.

I can't find the parts of the thread that introduce open source, but this is a fascinating statement and has (at least) as much credibility as "open source will save us". And it has the markings of a good blog entry or short article.

Since private communication with you is always more satisfying (signal over noise), do you think that a "product is free (open source), expertise is a recurring expense" would be an attractive proposition for the same entrepreneurs who would have taken a shot at starting a security company? Most security products fail IMO because they are forced to think on behalf of the unsophisticated user/customer, others fail because the unsophisticated user/customer can't configure and monitor it, or doesn't know what to do with the information gathered from monitoring. The knowledge factor is always discounted - security appliances replace expert staff in budgets - so is there a path where managed security services can be a $40/month expense for small businesses and the resulting security would be better than what those same customers would get by investing $10,000 in security they can't operate. begin:vcard
fn:David Piscitello
n:Piscitello;David
adr;dom:;;3 Myrtle Bank Lane;Hilton Head;SC;29926
email;internet:dave@xxxxxxxxxxx
x-mozilla-html:FALSE
url:http://hhi.corecom.com/weblogindex.htm
version:2.1
end:vcard

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


Relevant Pages

  • Re: MS Not Trust ist PSS/Gold Partners with Early Security/Vuln.
    ... As far as early release of specific information about a vulnerability, ... awaiting the patch. ... > attempt to maintain the veiled image of "real security", ... > both chose open source solutions. ...
    (microsoft.public.security)
  • REVIEW: "Open Source Security Tools", Tony Howlett
    ... The tools listed in this book are for network security, ... Chapter one outlines the open source concept, ... most reviews of software tools, and the details are clear for all who ...
    (alt.computer.security)
  • REVIEW: "Open Source Security Tools", Tony Howlett
    ... The tools listed in this book are for network security, ... Chapter one outlines the open source concept, ... most reviews of software tools, and the details are clear for all who ...
    (comp.security.misc)
  • Re: [Full-disclosure] Two MSIE 6.0/7.0 NULL pointer crashes
    ... it comes to security response - certainly not as often as portrayed. ... open source community is inherently responsive - does not even deserve ... Both in the open source and in the closed source world, ... And only if a vulnerability is a threat to adoption of a product is that ...
    (Full-Disclosure)
  • Re: The possibility of vms opening up?
    ... The notion of open systems security is based on having very ... open source clustering information can be found at least at the ... patches and support the older kernels for backward compatibility. ... that is why they pay vendors for support contracts. ...
    (comp.os.vms)