Re: ISS RealSecure/SiteProtector or another IDS/firewall client?

[Martin Roesch <roesch () sourcefire com>]

Hi James,

As a point of clarification, Sourcefire has NOT added any proprietary 
extensions to Snort as part of our product, we have wrapped Snort with 
all the things you need to use it as an enterprise-grade, scalable 
intrusion detection system.  We've made no secret about using Snort or 
the fact that we add our value by making Snort better from an ease of 
use/scalability/ease of deployment/support/etc standpoint, not by 
adding proprietary extensions to the system.  Let's face it, the core 
technology of our IDS is free so if we're going to get people to want 
to pay for it then there better be a lot of value-add and given the 
growth of Sourcefire over the past 3 years I'd say we're on the right 
track!  I believe that we build Snort "right" and put it together in 
the way that's most correct for people to use given our insight into 
the inner workings of the technology, but we are using the same source 
code you can download off of snort.org in our released products.

     -Marty

On Nov 26, 2003, at 12:04 PM, Bohling James CONT JBC wrote:
> 	Up to now, this isn't verified by any supporting authority but a lot 
> of the IDS's out there are using the opensource technologies under the 
> covers with proprietary changes. Look at sourcefire the underbelly is 
> Snort (I know that Marty Roesch created Snort and started Sourcefire) 
> but it is just an example of what technologies are using.

--
Martin Roesch - Founder/CTO, Sourcefire Inc. - (410)290-1616
Sourcefire: Snort-based Enterprise Intrusion Detection Infrastructure
roesch () sourcefire com - http://www.sourcefire.com
Snort: Open Source Network IDS - http://www.snort.org


---------------------------------------------------------------------------
---------------------------------------------------------------------------