Security Basics mailing list archives
Re: IPS
From: Javier Reyna Padilla <jreyna () onlinet com mx>
Date: Tue, 14 Oct 2008 12:02:23 -0500
Well, you might try snort-inline and the signs from bleedingsnort. If all the workstations uses firefox, you can try noscript extensions.
¡Saludos! ________________ Javier Reyna CCSE WCSE ISS-CS NSP JNCIA-FWV Consultor en Seguridad jreyna () onlinet com mx www.onlinet.com.mx ,,__ o" )~ '''' Mattias Hemmmingsson wrote:
Hi ! A want to protect my users from surfing in to sites that have programs that installs on there webbbrowsers. A have today one webbproxy that controlls witch sites there can watch (squids proxy) Bur is there any server lika one IPS that you can attace for all outgoing traffic. can squid go trow and block scripts thar runns on the other server ? All workstations uses ubuntu and a have snort for nids and ossec for HIDS and prelude for IDS, So the week link is my users that are using the internet. // matte
Current thread:
- risk assessment - non electronic data s0h0us (Oct 01)
- Re: risk assessment - non electronic data Alexander Swensen (Oct 01)
- IPS Mattias Hemmmingsson (Oct 02)
- Re: risk assessment - non electronic data Marc-André Laverdière (Oct 02)
- <Possible follow-ups>
- Re: risk assessment - non electronic data martlaberge (Oct 01)