Re: IDS ISS

From: Jonathan Glass (jonathan.glass_at_gmail.com)
Date: 05/19/05

  • Next message: Matthew Watchinski: "Re: Vulnerability vs. Exploit signatures and IPS??" 
    Date: Wed, 18 May 2005 20:02:22 -0400
To: Berteau Anatole <anatole.berteau@turbomeca.fr>

    Berteau Anatole wrote:

    >Hello,
    >
    >I'm testing IDS solution. After Snort, i'm beginning to work with ISS.
    >
    >What's the minimum architecture to use ISS? Is it possible to use only a network sensor? If this solution is available, what's the solution to consult alerts?
    >
    >Thanks
    >
    >Anatole
    >
    >--------------------------------------------------------------------------
    >Test Your IDS
    >
    >Is your IDS deployed correctly?
    >Find out quickly and easily by testing it with real-world attacks from
    >CORE IMPACT.
    >Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    >to learn more.
    >--------------------------------------------------------------------------
    >
    >
    >
    >
    I believe you'll have to deploy their Site Protector console product to
    be able to effectively manage their IDS solutions.

     From their IDS product page:
    http://www.iss.net/products_services/enterprise_protection/proventia/a_series.php
    Proventia intrusion detection appliances are centrally managed through
    the SiteProtector management system. Ongoing X-Press Update product
    enhancements ensure that Proventia intrusion detection appliances
    maintain a first to know/first to protect advantage against both known
    and unknown attacks.

    http://www.iss.net/download/
    Try downloading and testing the SiteProtector console.

    Thanks

    Jonathan

    --------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from
    CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    to learn more.
    --------------------------------------------------------------------------

  • Next message: Matthew Watchinski: "Re: Vulnerability vs. Exploit signatures and IPS??"

    Relevant Pages

    • RE: IDS ISS
      ... Have had several years experience with ISS. ... Sourcefire is doing some very interesting and innovative work with snort ... Subject: IDS ISS ... > Find out quickly and easily by testing it with real-world attacks from ...
      (Focus-IDS)
    • RE: Intrushield vs. ISS once more...
      ... Personally, I reviewed ISS along with Cisco's IDS, NetScreen's and a few ... Test Your IDS ... Find out quickly and easily by testing it with real-world attacks from ... CORE IMPACT. ...
      (Focus-IDS)
    • RE: IDS ISS
      ... I'm testing IDS solution. ... i'm beginning to work with ISS. ... Find out quickly and easily by testing it with real-world attacks from ... CORE IMPACT. ...
      (Focus-IDS)
    • RE: IDS Players?
      ... >an IDS solution but have no idea who the real players are in this ... >I've seen more than 250 providers of IDS solutions. ... >I've read about signature based IDS and host based IDS. ...
      (Focus-IDS)
    • IDS Players?
      ... I'm new to the list and new to IDS as well. ... an IDS solution but have no idea who the real players are in this market. ... I've read about signature based IDS and host based IDS. ...
      (Focus-IDS)