Re: nCircle IP360
From: Samuel Lam (slam@pillsburywinthrop.com)Date: 09/27/01
- Previous message: Tom Sevy: "FW: eEyeIsTheBest seen in http? (x-posted to Snort user list)"
- In reply to: Altheide, Cory: "nCircle IP360"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 27 Sep 2001 19:00:54 -0000 Message-ID: <20010927190054.26236.qmail@www2a> From: Samuel Lam <slam@pillsburywinthrop.com> To: focus-ids@securityfocus.com Subject: Re: nCircle IP360
I've been using IP360 for several months now and like
yourself was skeptical at the sales pitch but now
having seen it in action, I'm impressed. It actually
does what they say it does - - the system identifies
the vulnerabilities continuously. It gives us constant
risk assessment using a scoring system that makes
sense. We know how the network exposures
change day to day. The IDS is pretty cool because it
reconfigures itself using vulnerability data from the
scanner. We don't get a lot of false positives
because of that. We don't have sift through logs
because it gives us payload and header information
in real-time. I wish the reporting was a little more
flexible but they're working on that. Overall I'd
recommend it because it's accurate and really easy
to use. You just need a browser.
Regards,
Samuel Lam
Network Engineer
- Previous message: Tom Sevy: "FW: eEyeIsTheBest seen in http? (x-posted to Snort user list)"
- In reply to: Altheide, Cory: "nCircle IP360"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
