IPS - Default blocking policy

From: phb@xxxxxxxxx
Date: 11 Jul 2006 14:28:04 -0000

I ran into the term "default blocking policy" on the list a couple of times, defining the signatures vendors are feeling at ease blocking.
Do you find it is a strong enough list of exploits or are things still missing?
Do they generate false alarms resulting in blocking users?

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

Prev by Date: Re: Evaluating IDS
Next by Date: RE: IDS
Previous by thread: Help design visual tool for ID analysis
Next by thread: ISS - virtual patching
Index(es):
- Date
- Thread

Relevant Pages

Re: Glad I didnt go to WDW this weekend
... I find that I spend a few minutes every time I log on here just blocking ... these idiots! ... Hope you are feeling better, ... TDC Queen of Adventureland ...
(rec.arts.disney.parks)
Re: Deb Phillipson - Why?
... I didn't mean to be rude. ... I had no idea you were feeling better as I ... been blocking those posts and therefore had no idea you were better.I hope ...
(uk.rec.competitions)
Re: sygate personal firewall over cautious
... i have a feeling that the actual blocking of ntoskrnl and svchost has ...
(comp.security.firewalls)