Educause Security Discussion mailing list archives
Re: Schools using SourceFire for IPS
From: Bill Kyle <Bill.Kyle () JHU EDU>
Date: Wed, 21 Jul 2010 12:58:35 -0400
Seth, I can't speak for others. Here at Hopkins we're not a 24x7x365(6) shop. We have an on-call person to handle issues off hours as required. We have IDS and IPS deployed. Once the IPS was deployed, I started getting more sleep when on-call. Which I like. :-) -- Best regards, Bill Kyle Johns Hopkins Network Security Johns Hopkins University and Medical Institutions On Jul 21, 2010, at 12:33 PM, Seth Hall wrote:
On Jul 20, 2010, at 4:25 PM, Brad Judy wrote:We’re currently evaluating options for an IPS replacement project and we’re interested in hearing from any EDU’s who have deployed SourceFire equipment in an in-line IPS mode.Is there anyone willing to speak publicly about the real world benefits or perceived benefits they get from doing active IPS as opposed to just passively monitoring traffic in IDS mode? Sorry for hijacking your topic Brad, but I'd like to find out more generically about the reason why people choose IPS over (or in addition to) IDS. :) .Seth
Current thread:
- Schools using SourceFire for IPS Brad Judy (Jul 20)
- Re: Schools using SourceFire for IPS Seth Hall (Jul 21)
- Re: Schools using SourceFire for IPS Bill Kyle (Jul 21)
- Re: Schools using SourceFire for IPS Everett, Alex D (Jul 21)
- Re: Schools using SourceFire for IPS Brad Judy (Jul 22)
- Re: Schools using SourceFire for IPS Patrick Goggins (Jul 21)
- Re: Schools using SourceFire for IPS Seth Hall (Jul 21)