Re: IDS\IPS that can handle one Gig

From: Terry Vernon (tvernon24_at_comcast.net)
Date: 06/07/05

  • Next message: Frank Knobbe: "Re: IDS\IPS that can handle one Gig" 
    Date: Tue, 07 Jun 2005 13:15:50 +0000
To: Frank Knobbe <frank@knobbe.us>

    The term vulnerability management is equally flawed. We should not at
    all "manage" vulnerabilities, but "identify" and "eradicate" them

    In this context "manage" is used to encapsulate identification, removal, or circumventing based on what option there is at the time of discovery.

    Terry Vernon

    Frank Knobbe wrote:

    >On Sun, 2005-06-05 at 03:39 -0400, Vikram Phatak wrote:
    >
    >
    >>The biggest knock I've heard about VM is that it doesn't actually
    >>"protect" anything since it is not patching vulnerablities.
    >>
    >>
    >
    >I think this single line shows the biggest problem in the security
    >industry, the need to protect vulnerabilities. Instead of adding layers
    >to protect the bag of vulnerabilities, we should open the bag and remove
    >the vulnerabilities one by one.
    >
    >The term vulnerability management is equally flawed. We should not at
    >all "manage" vulnerabilities, but "identify" and "eradicate" them.
    >
    >The whole notion of keeping vulnerabilities around is just flawed...
    >
    >... and I wonder if IPSes just foster the complacency to accept and live
    >with vulnerabilities...
    >
    >Cheers,
    >Frank
    >
    >
    >

    --------------------------------------------------------------------------
    Test Your IDS

    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from
    CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
    to learn more.
    --------------------------------------------------------------------------

  • Next message: Frank Knobbe: "Re: IDS\IPS that can handle one Gig"

    Relevant Pages

    • Re: IDSIPS that can handle one Gig
      ... > The biggest knock I've heard about VM is that it doesn't actually ... the need to protect vulnerabilities. ... to protect the bag of vulnerabilities, we should open the bag and remove ...
      (Focus-IDS)
    • Re: IDSIPS that can handle one Gig
      ... Sometimes it may not be possible to patch critical servers simply ... the need to protect vulnerabilities. ... > to protect the bag of vulnerabilities, we should open the bag and remove ...
      (Focus-IDS)