RE: Firewall vs. IPS - Differences now (ISS, Intrushield 2.1?)

From: Jose Maria Lopez (jkerouac_at_bgsec.com)
Date: 09/05/04

  • Next message: Mustapha Huneyd: "Mcafee Intrusheild & Entercept performance & detection capabilities" 
    To: bwalder@spamcop.net
Date: 05 Sep 2004 22:43:16 +0200

    El lun, 30 de 08 de 2004 a las 23:27, Bob Walder escribió:

    > The only REAL question is who will win the race to product the perfect
    > integrated device - the firewall guys or the IDS/IPS guys?
    >
    > That's where you can stick your neck out ;o)
    >
    > Regards,
    >
    > Bob Walder
    > The NSS Group
    > www.nss.co.uk

    My personal point of view is that the REAL question it's that
    there is no question. If you want real security at your site
    you should have a good firewall and after that a good IPS, and
    to complete the team an IDS out of the secure zone, just to see
    who's knocking at your door or watching new attacks. Everything
    else is just cheap talk from the marketing guys at the
    Firewall/IPS/IDS companies. 

    -- 
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA
The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
                -- Jack Kerouac, "On the Road"
--------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more.
--------------------------------------------------------------------------
  • Next message: Mustapha Huneyd: "Mcafee Intrusheild & Entercept performance & detection capabilities"

    Relevant Pages

    • Re: What to do if they ignore you
      ... > My company provides outsource security management/monitoring services. ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ... Test Your IDS ...
      (Incidents)
    • Re: Snort IDS
      ... > would like to use the Open Source Snort network IDS running on RedHat Linux ... The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. ...
      (comp.security.firewalls)
    • Re: Monitoring software question
      ... tells port and protocol connected to and what local pc did ... bgSEC Seguridad y Consultoria de Sistemas Informaticos ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ...
      (comp.security.firewalls)
    • Re: IDS, IPS and encrypted traffic
      ... Some people have had success using an squid proxy with the certificates ... bgSEC Seguridad y Consultoria de Sistemas Informaticos ... The only people for me are the mad ones -- the ones who are mad to live, mad to talk, mad to be saved, desirous of everything at the same time, the ones who never yawn or say a commonplace thing, but burn, burn, burn like fabulous yellow Roman candles. ...
      (Focus-IDS)
    • Re: simple question about ip_forward and NAT routing.
      ... can access the internet. ... bgSEC Seguridad y Consultoria de Sistemas Informaticos ... The only people for me are the mad ones -- the ones who are mad to live, ... the ones who never yawn or say a commonplace thing, but burn, burn, burn ...
      (comp.os.linux.networking)