RE: Anomaly Based Network IDS

From: David J. Meltzer (djm_at_intrusec.com)
Date: 06/22/04

  • Next message: crayola_at_optonline.net: "RE: Anomaly Based Network IDS" 
    Date: Tue, 22 Jun 2004 10:43:03 -0500
To: <focus-ids@securityfocus.com>

    X-Originating-IP: [209.182.184.2]
    X-Originating-Email: [aaronj0rdan23@hotmail.com]
    X-Sender: aaronj0rdan23@hotmail.com

    Non-authoritative answer:
    2.184.182.209.in-addr.arpa name = spyglass01.lancope.com.

    Seriously folks...

    -Dave

    -----Original Message-----
    From: Aaron Jordan [mailto:aaronj0rdan23@hotmail.com]
    Sent: Friday, June 18, 2004 5:14 PM
    To: focus-ids@securityfocus.com; secdistlist@dauncey.net
    Subject: Re: Anomaly Based Network IDS

    My company uses Lancope's StealthWatch for anomaly based network IDS.
    We are quite pleased with its ability to detect zero-day undocumented
    attacks on our network. We're easily able to see into our network to
    examine what is actually happening on it versus what should be happening
    on it.

    We evaluated a few of the other products in this space and decided on
    this one since it was the easiest to use.

    --my $.02

    AJ
    "802.3"

    _________________________________________________________________
    Is your PC infected? Get a FREE online computer virus scan from
    McAfee(r) Security.
    http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

    ------------------------------------------------------------------------ 

    ---
------------------------------------------------------------------------
---
---------------------------------------------------------------------------
---------------------------------------------------------------------------
  • Next message: crayola_at_optonline.net: "RE: Anomaly Based Network IDS"