Penetration Testing mailing list archives
Re: IPS arguments
From: Esteban Farao <efarao () gmail com>
Date: Wed, 18 Feb 2009 18:10:31 -0500
Hi Hugo, The only arguments I can think of is that they need to be in complaince with PCI requeriment 11.4 or you want to automate the logging monitoring/response. Anyway, I believe that the use of an IDS/IPS is an additional layer to protect the whole infrastructure. If you have the proper security in place, the logs are enabled, you have personnel to review them, and there is a CIRP in place, do not need IDS/IPSs. Regards, Esteban If you want to automate On 2/14/09, Hugo Vinicius Garcia Razera <hviniciusg () gmail com> wrote:
Hello Gentleman's, I have finished a penetration testing to a client like a month ago. The company i worked for used some practices that i don't agree with. that's one of the reasons i resigned. any way they managed to shell the audited company a CISCO IPS using the results of the pen test. Well the thing is that the CIO of that company is refusing to install the IPS on their network even after his company has already put a buy order for the equipment and said IPS is know on their building but he refuses to install such equipment, augmenting that it is totally unnecessary because they all ready have an Microsoft ISA server Firewall in place, and symantec enpoint protection on the clients machine. Can any one point me why, they need an IPS? The old company i worked for wants me to penetrate their network, to proof them they need an IPS . this time I'm thinking on deploying an old Trojan i coded. but i would like to have more compelling arguments on why some one needs an IPS thanks for the time replying to my questions Hugo
-- Sent from my mobile device
Current thread:
- IPS arguments Hugo Vinicius Garcia Razera (Feb 18)
- Re: IPS arguments Javier Reyna (Feb 20)
- Re: IPS arguments arvind doraiswamy (Feb 20)
- Re: IPS arguments Esteban Farao (Feb 20)
- Re: IPS arguments JiPi DiNi (Feb 20)
- RE: IPS arguments Shenk, Jerry A (Feb 20)
- Re: IPS arguments M.D.Mufambisi (Feb 20)
- Re: IPS arguments Micheal Cottingham (Feb 22)
- Re: IPS arguments Danny Fullerton (Feb 22)
- Re: IPS arguments Javier Reyna (Feb 26)
- Re: IPS arguments Trygve Aasheim (Feb 27)
- Re: IPS arguments Webmaster 003 (Feb 27)
- Re: IPS arguments Keith Pasley Com6 (Feb 22)
- Re: IPS arguments David Howe (Feb 22)