Cisco IDS-4210, part III
From: Mark Guzowski (Guzowski_Mark@MSN.baz)
Date: 09/08/02
- Next message: Harold Huggins: "Question, how do I decrypt data files without encryption key?"
- Previous message: Andrew Covey: "secpol.msc will not allow changes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Mark Guzowski" <Guzowski_Mark@MSN.baz> Date: Sun, 8 Sep 2002 15:52:06 -0400
Have you ever seriously looked at the 'Secure Encyclopedia' portion of
Cisco's website? In particular their massive list of IDS signatures?
And perhaps done some real searches of the vulnerabilities database?
Like for Windows, or Solaris, etc. Talk about some *real* juicy
stuff.
Cisco's taking over my network backbone pretty darn quickly, for all
the obvious reasons. I'd still love to have their IDS in here someday.
To be blunt, price is no object for something that doesn't *** around.
> Dedicated HW that does packet sniffing in a real environment &
> performs a non-evasive, unobtrusive, real-time independent audit of a
> subnet is kind of de rigeur, from multiple perspectives.
>
> > An IDS that could plug & play in my secure subnet would be even more
> > interesting - everything IPSec/Kerberos. Sure such a device would need
> > to be physically guarded as cautiously as the CA, but IPSec/Kerberos
> > "everywhere," as well as two factor authentication, is simple common sense.
>
> > > What a stocking stuffer! Go ahead & call me a geek, but that puppy
> > > would put a smile on my face for a month. A geek's stocking can of
> > > course handle up to a 2u chassis.
> >
-----
Mark Guzowski
Guzowski_Mark@MSN.com
eZine/Homepage: http://groups.msn.com/magWorks
A few of the words I live by: "Live life day to day, on your own terms (not someone else's). Set your own moral compass, let it
not be set for you. Define your own self worth, let it not be defined for you. Your creativity (i.e., intellectual property) is
yours to do with as you please; in absence of an explicit agreement to the contrary (signed by you) it is not for others to do with
as they please."
About the email content: This email reflects my opinions. If the content offends, and you are a member of law enforcement (e.g.,
local police, fbi, nsa, or rcmp), first ask yourself if you have a legal wiretap. If not, stop reading the email Ass. Otherwise,
chill out - they're only my opinions after all.
- Next message: Harold Huggins: "Question, how do I decrypt data files without encryption key?"
- Previous message: Andrew Covey: "secpol.msc will not allow changes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
