RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)

From: Jose Maria Lopez (jkerouac_at_bgsec.com)
Date: 09/06/04

  • Next message: Raj Malhotra: "Re: question about anomalies detection" 
    To: bwalder@spamcop.net
Date: 06 Sep 2004 17:58:34 +0200

    El lun, 06 de 09 de 2004 a las 10:18, Bob Walder escribió:
    > I agree...... For now!
    >
    > But I thought we were talking futures (reading back to Greg's original
    > post)
    >
    > Given increases in capabilities of hardware, do you REALLY think these
    > will still be separate devices in five years time? (And let's not go
    > into what "next big thing" will have replaced ALL of these technologies
    > by then...;o)
    >
    > Regards,
    >
    > Bob Walder

    I think that maybe they can be in the same device, but being
    separate capabilities, not the mix Firewall-IPS some are seeing
    as the next step in the firewall or IDS technology. Anyway I
    wouldn't buy a single device with both capabilities, as I find
    more suitable to have the firewall separate from the IDS/IPS, so
    I can configure my network the way I want and not the way some
    marketing expert have think I should. 

    -- 
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
                -- Jack Kerouac, "On the Road"
--------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
--------------------------------------------------------------------------
  • Next message: Raj Malhotra: "Re: question about anomalies detection"

    Relevant Pages

    • Re: What to do if they ignore you
      ... > My company provides outsource security management/monitoring services. ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ... Test Your IDS ...
      (Incidents)
    • RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)
      ... >> bgSEC Seguridad y Consultoria de Sistemas Informaticos ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ... Test Your IDS ...
      (Focus-IDS)
    • Re: Snort IDS
      ... > would like to use the Open Source Snort network IDS running on RedHat Linux ... The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. ...
      (comp.security.firewalls)
    • RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)
      ... bgSEC Seguridad y Consultoria de Sistemas Informaticos ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ... Test Your IDS ...
      (Focus-IDS)
    • [RFC][PATCH] Thoughts about capabilities and prototype patch for user-capabilities
      ... I sure would use some of these capabilities on my user. ... least should allow to set/get capabilites of process ids, ... Below you will find a test program and at the bottom a patch which allows ... #define cap_raised(c, flag) & CAP_TO_MASK) ...
      (Linux-Kernel)