IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How to choose an IDS/FW MSS provider

From: <fuijdancer () yahoo com>
Date: 19 Mar 2005 15:47:51 -0000
In-Reply-To: <F6242D340921D5118D1E00508BB9837A0B612880 () tlnmail1 toplayer com>

Running IDS/IPS from the company IT department. Sure don't need to see them. But what the hack, These people have more 
to do then just monitor systems and networks and react to incidents. Security Analysist do need to see the rules from 
time to time. That's the whole point: if you want detection and reaction to work for you and enhance security, one must 
outsource to a specialized company (the remaining 10%) and not let this tasks be performed by IT admins, general IT 
companies doing security as a money making service (the 90% of Joshua).

inline or not inline. most often an incident properly analysed and responded to in minutes by security experts is more 
valuable then the automated response of an IPS :-)

i full agree with Tim.

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: