Security Basics mailing list archives

Re: IPS

From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Sun, 12 Oct 2008 16:23:28 +0400

Hi!

Many security platforms have ability to filter HTTP traffic. They can
block ActiveX, access to black-listed sites, check files for
antiviruses. All big vendors provide this functionality. Cisco,
checkpoint, bluecoat... 100% sure it is possible to combine open
source tools, self-written scripts and achieve a similar capabilities
from squid.

2008/10/2 Mattias Hemmmingsson <mattias () fareoffice com>:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi !

A want to protect my users from surfing in to sites that have programs
that installs on there webbbrowsers.
A have today one webbproxy that controlls witch sites there can watch
(squids proxy)
Bur is there any server lika one IPS that you can attace for all
outgoing traffic. can squid go trow and block scripts thar runns on
the other server ?

All workstations uses ubuntu and a have snort for nids and ossec for
HIDS and prelude for IDS,
So the week link is my users that are using the internet.

// matte
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFI5HHgNJQJ1TN4TrgRAp/JAKCzQu7q65InjS5S+OIRyup+Be/0PwCgkRbl
hBBMfVigHV3E0hT/PK7aOW4=
=YroH
-----END PGP SIGNATURE-----




-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com
http://www.linkedin.com/in/gpaharenko

Current thread:

risk assessment - non electronic data s0h0us (Oct 01)
- Re: risk assessment - non electronic data Alexander Swensen (Oct 01)
- IPS Mattias Hemmmingsson (Oct 02)
  - Re: IPS Gleb Paharenko (Oct 14)
    - Re: IPS Adriel Desautels (Oct 14)
  - Re: IPS Javier Reyna Padilla (Oct 14)
- Re: risk assessment - non electronic data Marc-André Laverdière (Oct 02)
- <Possible follow-ups>
- Re: risk assessment - non electronic data martlaberge (Oct 01)