Re: Looking for Host Based IDS

From: Propatria (propatria@ntlworld.com)
Date: 12/17/01

• Previous message: Matt.Carpenter@alticor.com: "RE: Looking for Host Based IDS"
• In reply to: Guy Fighel: "Looking for Host Based IDS"
• Next in thread: Talisker: "Re: Looking for Host Based IDS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Propatria" <propatria@ntlworld.com>
To: "Guy Fighel" <GuyF@xpert.com>
Date: Mon, 17 Dec 2001 19:27:58 -0000

Kane Secure Enterprise
(http://www.intrusion.com/products/technicalspec.asp?lngProdNmId=3) should
do everything you require, I also suggest you check out Andy's great IDS
site (www.networkintrusion.co.uk) (that's another fiver you owe me, Andy
>) )

Pete

- )---- Original Message -----
From: "Guy Fighel" <GuyF@xpert.com>
To: <focus-ids@securityfocus.com>
Sent: Monday, December 17, 2001 3:34 PM
Subject: Looking for Host Based IDS

> Hello,
>
> Can someone recommend about a good Host Based IDS that looks for
suspicious
> operating system processes?
> I need the ability to write a specific policy for specific system
processes
> and need that the IDS will report about any modifications.
>
> I would appreciate your help,
>
> Guy.
>

---

• Previous message: Matt.Carpenter@alticor.com: "RE: Looking for Host Based IDS"
• In reply to: Guy Fighel: "Looking for Host Based IDS"
• Next in thread: Talisker: "Re: Looking for Host Based IDS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ids  > 2001-12