> -----Original Message-----
> From: Jimmy C. Vicedo [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, August 01, 2001 1:08 AM
> To: [EMAIL PROTECTED]
> Subject: [plug] Anti-virus for Linux
>
>
> To all,
>
> Is there an anti-virus software for a Linux firewall . What about
> something that can protect the network from Intrusion detection,
> spoofing, etc ?
Looks like the 2 weeks thread about sophos didn't help you. :-)
We also need to rephrase the question RE IDS, so as not to confuse other
members of the list. Btw, IDS really helps.
The question now would be, how can an IDS believe that the benign attack
is a real malicious request. It's one of the problems now that IDS vendors
are facing.
Another is, bidirectional packet forgery can completely confuse network
intrusion detection systems.
One solution to this is to setup "spoof protection".
Spoofing? Don't accept RFC1918 address or address of your internal subnet
coming from the PUBLIC to your external interface.
Hope this helps.
-onie
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
