RE: Re: IDS evaluation

From: George Milliken (gmilliken@farm9.com)
Date: 08/23/02 

From: "George Milliken" <gmilliken@farm9.com>
To: "'Stefan Dens'" <Stefan.dens@pandora.be>, <focus-ids@securityfocus.com>
Date: Thu, 22 Aug 2002 15:04:30 -0700

Also check out Harvester from farm9.com this is a commercial product
but the open source version debuts 9/3/02.

George Milliken, CEO
farm9

-----Original Message-----
From: Stefan Dens [mailto:Stefan.dens@pandora.be]
Sent: Thursday, August 22, 2002 9:36 AM
To: focus-ids@securityfocus.com
Subject: Re: Re: IDS evaluation

Hi,

>I'm a Snort fan but deploying 12 of them with central management needs
>good expertise and multi-tool gluying skills.

I'm also a snort fan but deploying 12 sensor with a central management
is easy. Take a look at SnortCenter http://users.pandora.be/larc , it is
a complete management system to manage remote snort sensors. Next week
there will be a new version available with a lot of new features. The
new version will also work on linux, *BSD, solaris & Windows.

And the best of all it's free under GPL license

Regards,
Stefan Dens

------------------------
 Saad Kadhi <bsdguy@docisland.org> wrote:
------------------------
On Wed, Aug 21, 2002 at 04:04:07PM -0400, Elijah Savage wrote:
>> I am coming to you experts for a little help. It has come time to
>> renew our maintenance contract with cisco we have the old netranger
>> product. Well my company wants me to do a review of 3 products of my
>> choice to see what other products may provide us a better solution
>> that what we currently have. We have 12 IDS sensors currently. Can
>> you all recommend 3 products that will be worth my time to take a
>> look at?
>If central management/event correlation is what you need then my list
>would be: 1.Enterasys Dragon 2.Cisco Secure IDS
>3.ISS
>
>However, the new appliances from Cisco that promise better performance
>than Dragon (among other things) are still vaporware at this time.
>
>I'm a Snort fan but deploying 12 of them with central management needs
>good expertise and multi-tool gluying skills.
>
>--
>Saad Kadhi
>[pgp keyid: 35592A6D http://pgp.mit.edu]
>[pgp fingerprint: BF7D D73E 1FCF 4B4F AF63 65EB 34F1 DBBF 3559 2A6D]
># booth slave for hire

Relevant Pages

  • Re: IDS evaluation
    ... other features that make it a no brainer for any snort admin. ... IDS market closely and frankly don't see anything that even comes close. ... >>I'm a Snort fan but deploying 12 of them with central management needs ...
    (Focus-IDS)
  • Re: Re: IDS evaluation
    ... >expertise and multi-tool gluying skills. ... I'm also a snort fan but deploying 12 sensor with a central management is easy. ...
    (Focus-IDS)