Checkpoint SmartDefense

From: Fergus Brooks (fergwa_at_gmail.com)
Date: 05/18/05

Next message: Will Metcalf: "Re: flow of packet from iptable to snort_inline"

Previous message: Berteau Anatole: "IDS ISS"
Next in thread: Net Shark: "RE: Checkpoint SmartDefense"
Reply: Net Shark: "RE: Checkpoint SmartDefense"
Maybe reply: Ofer Shezaf: "RE: Checkpoint SmartDefense"
Maybe reply: THolman_at_toplayer.com: "RE: Checkpoint SmartDefense"
Reply: Dimitrios Patsos: "RE: Checkpoint SmartDefense"
Maybe reply: charles.fasching_at_milestonesystems.com: "RE: Checkpoint SmartDefense"
Maybe reply: THolman_at_toplayer.com: "RE: Checkpoint SmartDefense"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 18 May 2005 19:09:41 +0800
To: focus-ids@securityfocus.com

Hi all,

I am getting some mixed messages regarding this feature.

1) Does it detect zero day attacks in real time and
recommend/implement remediation

2) How intelligent is it?

3) Is it difficult to configure & maintain?

4) Is this feature different on the Interspect and standard FW-1 boxes

Any comments and real world examples greatly appreciated!

Thanks & regards.

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------

Next message: Will Metcalf: "Re: flow of packet from iptable to snort_inline"

Previous message: Berteau Anatole: "IDS ISS"
Next in thread: Net Shark: "RE: Checkpoint SmartDefense"
Reply: Net Shark: "RE: Checkpoint SmartDefense"
Maybe reply: Ofer Shezaf: "RE: Checkpoint SmartDefense"
Maybe reply: THolman_at_toplayer.com: "RE: Checkpoint SmartDefense"
Reply: Dimitrios Patsos: "RE: Checkpoint SmartDefense"
Maybe reply: charles.fasching_at_milestonesystems.com: "RE: Checkpoint SmartDefense"
Maybe reply: THolman_at_toplayer.com: "RE: Checkpoint SmartDefense"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Microsoft compiler flaw, Cigital responds
... Also of interest are various attacks against the ... We never made a claim that the use of the flawed /GS feature exposes code to ... relied on to improve software security. ... a classic criticism against Microsoft is ...
(Bugtraq)
RE: Checkpoint SmartDefense
... based attacks. ... Interspect is a streamlined version of SmartDefense with no FW-1 ... I am getting some mixed messages regarding this feature. ... Find out quickly and easily by testing it with real-world attacks from ...
(Focus-IDS)
RE: Checkpoint SmartDefense
... > Subject: Checkpoint SmartDefense ... > I am getting some mixed messages regarding this feature. ... It can detect some attacks on the fly and stop them. ... SmartDefense however, can be very tricky to *tune*, but not to configure, as ...
(Focus-IDS)
Re: electric search, incremental search, find as you type...
... > Whatever you call it (emacs calls it electric search, ... > feature in which searching happens in "real time", ... > I've not been able to find this feature in Word ... > collect characters and move the cursor until ...
(microsoft.public.word.general)
dnsspoofing..
... is there a tool or script that can find and block in real time these ... type of attacks in local area network?? ...
(comp.os.linux.security)