Re: Snort as IDS/IPS in mission-critical enterprise network

[c0ntex <c0ntexb () gmail com>]

....and fix all the off-by-ones in the code if you run it on an old
linux distro, oh, and audit the preprocessors for more cracking
overflows lol

Would be a terrible shame to loose your network because of your IDS.

On 09/12/05, none none <justliketocode () yahoo com> wrote:
> Most "enterprise" IDS products are built upon Snort code my friend. Snort is
> definately ready for whatever type of environment you put it in. Just make
> sure you follow the snort mailing list from time to time to keep up on new
> signatures that may not be added to the snort release.
>
> "Native.Code" <native.code () gmail com> wrote:
>
> Hi security peers,
>
> We are thinking to use Snort as IDS/IPS solution in our network where only
> port 80 and 443 are open to public internet. I would like to know how will
> you guys rate Snort compared to ISS RealSecure Network (
> http://www.iss.net/products_services/enterprise_protection/rsnetwork/sensor.php)?
> Is Snort enterprise ready where it can be deployed to monitor
> mission-critical network?
>
> If any of you can name any big network which is using Snort as an example,
> it will be very helpful.
>
> Thanks,
> Native.Code _______________________________________________
> Full-Disclosure - We believe in it.
> Charte r:
> http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
>
>  ________________________________
> Yahoo! Shopping
>  Find Great Deals on Holiday Gifts at Yahoo! Shopping
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter:
> http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/


--

regards
c0ntex
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/