Apologies, I kinda take stuff like this for granted, working with it every
day.
IDS is an "Intrusion Detection System".
Off the top of my head:
Network based IDSs are manufactured by:
Cisco - NetRanger ( www.cisco.com )
Internet Security Systems - RealSecure ( www.iss.net )
NFR - Network Flight Recorder ( www.nfr.com )
NetProwler - Axent ( www.axent.com )
Host Based IDS:
Tripwire ( www.tripwiresecurity.com )
Internet Security Systems - RealSecure ( www.iss.net )
===================================================================
Larry Chin {[EMAIL PROTECTED]} Technical Specialist - ISC
Sprint Canada 2550 Victoria Park Avenue
Phone: 416.496.1644 ext. 4693 Suite 200, North York, Ontario
Fax: 416.498.3507 M2J 5E6
===================================================================
On Mon, 19 Jul 1999, Derek Martin wrote:
> On Mon, 19 Jul 1999, Larry Chin wrote:
>
> > - Set up a good router/bastion/router firewall.
> > - Use a network based IDS system ( preferably ) inside and outside your
> > firewall
> > - Use host based IDS ( tripwire or some such ) on your hosts
> > - Use swatch or some such to keep an eye on your log files
> > - Make sure you have good backups - just in case ( I once had a hacker
> > wipe a machine on his way "out" )
> > - Make all your hosts as secure as possible without making them unuseable
> > ( probably easier to do with *NIX as opposed to a M$ OS )
>
> I agree with everything you say in your message, but I would like to
> suggest that you take care in using TLA's (three-letter acronyms) when
> making posts such as this... Typically the people who are most interested
> in reading this type of post are the complete newbies, as well as the
> less-experienced. Both groups are relatively unlikely to know what your
> TLA's stand for.
>
> I myself have some experience with security and firewalls (but I'm
> admittedly no expert), and though I can infer the gist of it from context,
> I still don't know to what you are referring when you use IDS, so I would
> not be surprised if the person you were replying to doesn't either.
>
> Thanks!
>
> --
> Derek D. Martin | UNIX System Administrator
> [EMAIL PROTECTED] | [EMAIL PROTECTED]
>
===================================================================
Larry Chin {[EMAIL PROTECTED]} Technical Specialist - ISC
Sprint Canada 2550 Victoria Park Avenue
Phone: 416.496.1644 ext. 4693 Suite 200, North York, Ontario
Fax: 416.498.3507 M2J 5E6
===================================================================
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
