Full Disclosure mailing list archives
Re: Snort as IDS/IPS in mission-critical enterprise network
From: c0ntex <c0ntexb () gmail com>
Date: Fri, 9 Dec 2005 13:49:15 +0000
....and fix all the off-by-ones in the code if you run it on an old linux distro, oh, and audit the preprocessors for more cracking overflows lol Would be a terrible shame to loose your network because of your IDS. On 09/12/05, none none <justliketocode () yahoo com> wrote:
Most "enterprise" IDS products are built upon Snort code my friend. Snort is definately ready for whatever type of environment you put it in. Just make sure you follow the snort mailing list from time to time to keep up on new signatures that may not be added to the snort release. "Native.Code" <native.code () gmail com> wrote: Hi security peers, We are thinking to use Snort as IDS/IPS solution in our network where only port 80 and 443 are open to public internet. I would like to know how will you guys rate Snort compared to ISS RealSecure Network ( http://www.iss.net/products_services/enterprise_protection/rsnetwork/sensor.php)? Is Snort enterprise ready where it can be deployed to monitor mission-critical network? If any of you can name any big network which is using Snort as an example, it will be very helpful. Thanks, Native.Code _______________________________________________ Full-Disclosure - We believe in it. Charte r: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ________________________________ Yahoo! Shopping Find Great Deals on Holiday Gifts at Yahoo! Shopping _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
-- regards c0ntex _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Snort as IDS/IPS in mission-critical enterprise network Native.Code (Dec 08)
- Re: Snort as IDS/IPS in mission-critical enterprise network none none (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprise network c0ntex (Dec 09)
- RE: Snort as IDS/IPS in mission-critical enterprisenetwork Paul Melson (Dec 09)
- New paper on theory of disclosure for security & competitive reasons Peter Swire (Dec 13)
- Re: Snort as IDS/IPS in mission-critical enterprise network coderman (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprise network c0ntex (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprise network Michael Holstein (Dec 09)
- RE: Snort as IDS/IPS in mission-critical enterprisenetwork Paul Melson (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprisenetwork Michael Holstein (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprise network none none (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprisenetwork sk (Dec 09)
- Re: Snort as IDS/IPS in mission-critical enterprise network coderman (Dec 09)