Re: IDS evaluation
From: Frank Smith (fsmith@hoovers.com)Date: 08/22/02
- Previous message: Johannes Ullrich: "Re: IDS evaluation"
- In reply to: Johannes Ullrich: "Re: IDS evaluation"
- Next in thread: Travis Dawson: "Re: IDS evaluation"
- Next in thread: Reverman, Peter C: "RE: IDS evaluation"
- Reply: Travis Dawson: "Re: IDS evaluation"
- Reply: Scott M. Algatt: "Re: IDS evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 22 Aug 2002 11:35:40 -0500 From: Frank Smith <fsmith@hoovers.com> To: Johannes Ullrich <jullrich@euclidian.com>, Saad Kadhi <bsdguy@docisland.org>
--On Thursday, August 22, 2002 12:25:41 -0400 Johannes Ullrich <jullrich@euclidian.com> wrote:
>> I'm a Snort fan but deploying 12 of them with central management needs
>> good expertise and multi-tool gluying skills.
>
> same here (snort fan). But I guess if you are comparing it to
> commercial products like Dragon, you should consider the
> commercial/supported version of snort from Sourcefire. I haven't
> had a chance to use it yet. But I understand they offer a central
> management console and a 'plug and play' appliance (hardware with
> pre-installed snort sensor).
Depending on the wheres and hows of your snort deployment, you might
want to look at the snort-mysql-acid combination for central reporting.
Frank
- Previous message: Johannes Ullrich: "Re: IDS evaluation"
- In reply to: Johannes Ullrich: "Re: IDS evaluation"
- Next in thread: Travis Dawson: "Re: IDS evaluation"
- Next in thread: Reverman, Peter C: "RE: IDS evaluation"
- Reply: Travis Dawson: "Re: IDS evaluation"
- Reply: Scott M. Algatt: "Re: IDS evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
