RE: using HIDS for change control

• Previous message: Pukhraj Singh: "Re: IPS technology question."
• Next in thread: Daniel Cid: "RE: using HIDS for change control"
• Reply: Daniel Cid: "RE: using HIDS for change control"
• Reply: Ron Gula: "RE: using HIDS for change control"
• Maybe reply: Evans, Arian: "RE: using HIDS for change control"
• Maybe reply: Andrew Plato: "RE: using HIDS for change control"
• Maybe reply: Rivera,Angel L.: "RE: using HIDS for change control"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 24 Aug 2005 18:09:33 -0400
To: <focus-ids@lists.securityfocus.com>

Does anyone on this list know of a sponsor that is using HIDS to monitor
changes to a system's (Unix & Windows) configuration?
 
The goal is to build a server according to specs (this would include
hardening of the OS + agency specific security settings) then use a HIDS
to detect and alert on any changes.
 
Theoretically speaking, I know this can be done, but is anyone doing
this?

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

• Previous message: Pukhraj Singh: "Re: IPS technology question."
• Next in thread: Daniel Cid: "RE: using HIDS for change control"
• Reply: Daniel Cid: "RE: using HIDS for change control"
• Reply: Ron Gula: "RE: using HIDS for change control"
• Maybe reply: Evans, Arian: "RE: using HIDS for change control"
• Maybe reply: Andrew Plato: "RE: using HIDS for change control"
• Maybe reply: Rivera,Angel L.: "RE: using HIDS for change control"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]