RE: SOHO Hardware IDS

["JAVIER OTERO" <jotero () SMARTEKH com>]

Remember that 1/3 of attacks comes from kids looking around, normaly they does not what are lookin and where.
Other 1/3 comes from competition, they know what are looking, but no whre.
The other is internal, they know what and where, the 80% success is here (programers, angry or dishomest employees)
Then the most important IDS or IDP is internal.
Maybe in more than one place.
The only one hardware NIDP that I know is NetScreen, maybe the model 10.
Like IDS use Snort in linux or BSD with some add for easy management.
Fortinet is Firewall with IDS and AV


Ing. Fco. Javier Otero De Alba 
Diplomado en Seguridad Informática ITESM CEM 
Grupo Smartekh 
Antivirus Expertos 
Bussiness Continuity 
Inftegrity 
5243-4782 al 84 Ext.300
México, D.F. 

---------------------------------------------------------------------------
Network with over 10,000 of the brightest minds in information security
at the largest, most highly-anticipated industry event of the year.
Don't miss RSA Conference 2004! Choose from over 200 class sessions and
see demos from more than 250 industry vendors. If your job touches
security, you need to be here. Learn more or register at
http://www.securityfocus.com/sponsor/RSA_focus-ids_031023
and use priority code SF4.
---------------------------------------------------------------------------