Firewall Wizards mailing list archives
Re: INtrusion Detection
From: Frederick M Avolio <avolio () tis com>
Date: Tue, 17 Feb 1998 09:28:04 -0500
At 07:29 AM 2/17/98 -0500, Gary Crumrine wrote:
One thing that I have noticed, is that we tend to deal in absolutes... A product has to meet x,y,z absolutely or it is considered BAD. I totally disagree with that thought stream. Take a look at the needs of a bank, VS. the little shop down the block that wants to protect their ten employee internet connection. Who's needs are more? I think that the first answer is both are equal. But the poor guy doesn't have the $ to spend like the bank. He needs something...so he is willing to accept more of a risk, and use something less robust IE Costing less. It makes damn good sense to me to recommend a product that may be less robust, but affordable in lieu of him going totally without.....
I agree. I am speaking from a vendor perspective as well as from a user of the technology, and an assessor of risks. The complaint I have is not against the above position, but against those who point to a security solution that may be perfectly adequate for your "little shop down the block" and claim that it is also suitable for the bank in your example. Put another way, a "high end" security device suitable for the bank is almost always (if money were no object) also suitable for the shop. You cannot make the same statement in the other direction for a "low end" device suitable for the shop. Fred
Current thread:
- INtrusion Detection Gary Crumrine (Feb 17)
- Re: INtrusion Detection Frederick M Avolio (Feb 18)
- Re: INtrusion Detection Aleph One (Feb 18)
- Practical Firewall Metrics...Was: INtrusion Detection Christopher Nicholls (Feb 20)
- Re: Practical Firewall Metrics Marcus J. Ranum (Feb 20)
- Re: Practical Firewall Metrics Michael Brennen (Feb 20)
- Re: Practical Firewall Metrics Marcus J. Ranum (Feb 20)
- Re: Practical Firewall Metrics Christopher Nicholls (Feb 24)
- Practical Firewall Metrics...Was: INtrusion Detection Christopher Nicholls (Feb 20)
- Re: Practical Firewall Metrics Bennett Todd (Feb 20)
- Re: Practical Firewall Metrics Leonard Miyata (Feb 20)
- Re: Practical Firewall Metrics...Was: INtrusion Detection Bennett Todd (Feb 20)
- <Possible follow-ups>
- Re: INtrusion Detection tqbf (Feb 18)