IDS mailing list archives

RE: IDS Opinions

From: fr0ck9 <fr0ck9 () yahoo com>
Date: Tue, 1 Jun 2004 14:22:08 -0700 (PDT)

Of the ones you have mentioned, Dragon has been the
best in my experience.  Both in detection and false
positives.  If you have not looked at it, Network
Associate's Intrushield is worth a look too.

Rather than just a packet grepping IDS, it is stateful
and performs multiple matches.  It also had more
protocol anomaly detection than Symantec and a
learning statistical anomaly algorithm.




-----Original Message-----
From: crayola () optonline net
[mailto:crayola () optonline net] 
Sent: Friday, May 28, 2004 2:23 PM
To: focus-ids () securityfocus com
Subject: IDS Opinions

Folks, 

I am currently in the middle of an RFP process to buy
a new Network ids system for my company. I have
narrowed it down to 

Sourcefire's, Dragon (Enterasys), and Symantec's
manhunt. 

I would love to hear your opinions about these
products if you use or have used them. Anything you
can share would be great. I am really looking for some
nonsales type opinions about how they work in the real
world. 

Thanks,
Mike


------------------------------------------------------------------------
---

------------------------------------------------------------------------
---







Disclaimer:
This electronic message, including any attachments, is
confidential and intended solely for use of the
intended recipient(s). This message may contain
information that is privileged or otherwise protected
from disclosure by applicable law. Any unauthorized
disclosure, dissemination, use or reproduction is
strictly prohibited. If you have received this message
in error, please delete it and notify the sender
immediately. 




---------------------------------------------------------------------------

---------------------------------------------------------------------------




        
                
__________________________________
Do you Yahoo!?
Friends.  Fun.  Try the all-new Yahoo! Messenger.
http://messenger.yahoo.com/ 

---------------------------------------------------------------------------

---------------------------------------------------------------------------

Current thread:

RE: IDS Opinions Harper, Patrick (Jun 01)
- <Possible follow-ups>
- RE: IDS Opinions Danislav Kostov (Jun 01)
  - RE: IDS Opinions Martin (Jun 02)
  - Re: IDS Opinions manish (Jun 02)
    - Re: IDS Opinions Devdas Bhagat (Jun 14)
  - RE: IDS Opinions Steve Massa (Jun 02)
    - RE: IDS Opinions NTL World - Chris Standard (Jun 18)
- RE: IDS Opinions fr0ck9 (Jun 02)
- Re: IDS Opinions mills (Jun 02)
- Re: IDS Opinions Nik Schild (Jun 07)
  - Re: IDS Opinions Brian (Jun 07)
  - Re: IDS Opinions gcb33 (Jun 07)
- Re: IDS Opinions Greg Martin (Jun 09)
- FW: IDS Opinions Madalin Bratu (Jun 21)