IDS mailing list archives
Re: OSSIM as IDS
From: dogten <dogten () d3fcon org>
Date: Wed, 21 May 2008 16:49:44 -0500
Tremaine Lea wrote:
Unfortunately, that's true of most IDS worth the name. Whether one is looking at Tipping Point, Sourcefire or another commercial offering, you're looking at a pretty good investment of time.We had a bad experience with OSSIM on high load networks, too many bells and whistles. EasyIDS seems to be a better fit for us and comes with wizard based configuration for Barnyard integration.--- Tremaine Lea Network Security Consultant Intrepid ACL "Paranoia for hire" On 21-May-08, at 10:21 AM, dkny () noah com wrote:Good, but a lot of work to get it in place. David Quoting online_preeti () yahoo com:Dear All,Is that anyone has worked on OSSIM as an open source for intrusion detection?Regards Preeti
-- -dogten http://blog.memoryoffset.com"I have not failed. I've just found 10,000 ways that won't work." - Thomas Alva Edison (1847-1931)
------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly?Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more.
------------------------------------------------------------------------
Current thread:
- OSSIM as IDS online_preeti (May 21)
- Re: OSSIM as IDS dkny (May 21)
- Re: OSSIM as IDS Chris Griffin (May 21)
- Re: OSSIM as IDS Tremaine Lea (May 21)
- Re: OSSIM as IDS dogten (May 22)
- <Possible follow-ups>
- Re: Re: OSSIM as IDS preetichauhan1982 (May 22)
- Re: Re: OSSIM as IDS Jakub (May 22)
- Re: Re: OSSIM as IDS nospam (May 26)
- Re: OSSIM as IDS dkny (May 21)