Re: Any IDS Recommendations?
From: Mercury (me_at_spam.com)
Date: 07/13/05
- Next message: David H. Lipman: "Re: Any IDS Recommendations?"
- Previous message: S. Pidgorny
: "Re: Any IDS Recommendations?" - In reply to: The Poster: "Any IDS Recommendations?"
- Next in thread: David H. Lipman: "Re: Any IDS Recommendations?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 14 Jul 2005 00:12:00 +1200
Please ignore this if your site is not a High Security site.
If you are using SSL, then where is the End Point? IE where is the encrypted
traffic decrypted?
I would expect your auditors to have a hissy fit if the SSL traffic were
dencrypted anywhere sniffable, snortable or IDS'able as that could lead to
identity theft.
For a high security site, logging SSL traffic is pointless, logging source
ip, port, time is more useful. Logging decrypted SSL traffic is an outright
danger.
I am happy to be corrected if needs be.
"The Poster" <nospam@nospam_dontyoudare.net> wrote in message
news:uTuR$k4hFHA.2644@TK2MSFTNGP09.phx.gbl...
> G/Day Forum,
>
> I currently in the process of evaluating a number of IDS solutions. This
> IDS
> system will sit between an edge router (configured with ingress/egress
> filtering) and a Cisco Firewall. Our throughput requirement is low, as
> we've
> only got a 2mb leased line to our ISP..
>
> Whats important to us:
> - ease of configuration and ongoing management
> - cost effectiveness
> - suitability to Industry (Financial)
> - logging ability/high quality reports/audit trail
>
> The products I'm currently looking at are:
> - Tipping Point 50
> - Cisco IDS 4215
>
> Any ideas, opinions, guidance?
>
> Regards,
> Steve.
>
>
- Next message: David H. Lipman: "Re: Any IDS Recommendations?"
- Previous message: S. Pidgorny
: "Re: Any IDS Recommendations?" - In reply to: The Poster: "Any IDS Recommendations?"
- Next in thread: David H. Lipman: "Re: Any IDS Recommendations?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
