IDS mailing list archives

Re: Intrusion Prevention

From: Frank Knobbe <fknobbe () knobbeits com>
Date: 10 Dec 2002 15:34:00 -0600

On Mon, 2002-12-09 at 03:46, Jill Tovey wrote:

ActiveScout by all intents and purposes seems a unique and innovative   
approach to IDS technologies and provides a number of advantages over 
other detection systems, such as proactively detecting reconnaissance 
attacks.



uhm.... could you please explain how anyone can *proactively* detect
recon scans? Is that through some ESP plugin?


100% no false positives, 'proactive' intrusion detection, intrusion
prevention products that can 'sense' when you are 'about' to scan, and
'cloak' your network for you..... oh wow, I guess we're not in Kansas
anymore...

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

Intrusion Prevention intrusi0n (Dec 08)
- Re: Intrusion Prevention Paul Wayne Brager Jr (Dec 09)
- Re: Intrusion Prevention Raistlin (Dec 09)
  - Re: Intrusion Prevention roy lo (Dec 10)
- Re: Intrusion Prevention Karl Lynn (Dec 11)
- <Possible follow-ups>
- RE: Intrusion Prevention Avi Chesla (Dec 09)
- Re: Intrusion Prevention Jill Tovey (Dec 09)
  - Re: Intrusion Prevention Frank Knobbe (Dec 10)
- RE: Intrusion Prevention Adam Powers (Dec 10)
- RE: Intrusion Prevention Ralph Los (Dec 10)
- Re: Intrusion Prevention Vern Paxson (Dec 10)
  - RE: Intrusion Prevention Chris Petersen (Dec 11)
  - Intrusion Prevention Johnny Kho (Dec 23)
- RE: Intrusion Prevention Robert_Huber (Dec 11)
- RE: Intrusion Prevention Matthew L. McGuirl (Dec 11)
  - RE: Intrusion Prevention Frank Knobbe (Dec 11)
- RE: Intrusion Prevention Carey, Steve T GARRISON (Dec 23)
  - Re: Intrusion Prevention Dave Mitchell (Dec 23)

(Thread continues...)