If the docs have been updated to reflect NFR 4.1. I had received a copy
of NFR 4.0 a while back that included outdated documentation (NFR 3.0)..
Hopefully, this has been corrected since then.
The OS is definitely a copy of a OpenBSD 2.3, which can be readily
displayed if one uses nmap. Be careful, the version of OpenBSD NFR used
still has a buffer overflow problem.
/mark
"Carric Dooley" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
02/03/00 04:29 PM
To: "Miss Yvette Seifert Hirth, CCP, CDP" <[EMAIL PROTECTED]>, "List
Server,
Firewalls" <[EMAIL PROTECTED]>
cc:
Subject: Re: NFR's Intrusion Detection Appliance
Did it not come with the docs??
Basically you put it in a machine that has NIC's it can drive (like a PII
machine with 3c905's), a 4 gig HDD, and 64-128MB RAM and boot it up. It
more-or-less runs off the CD, reads a small config from the HDD on bootup
(after you have configured it.. it's pretty straight forward), and logs to
the HDD. I was not personally overwhelmed by the interface ( I prefer
ISS' heirarchical alerts), but I would say it is considred to be in the
top 5 for NIDS's. It can run stand-alone or, with a Solaris/Linux mgt.
station, in distributed. I want to say the OS is a customization of
NetBSD (or OpenBSD??).
Carric Dooley
Network Security Consultant
"A little inaccuracy sometimes saves a ton of explanation. "
- H. H. Munro (Saki) (1870-1916)
----- Original Message -----
From: Miss Yvette Seifert Hirth, CCP, CDP <[EMAIL PROTECTED]>
To: List Server, Firewalls <[EMAIL PROTECTED]>
Sent: Thursday, February 03, 2000 4:03 PM
Subject: NFR's Intrusion Detection Appliance
> Hi everybody!
>
> Today in the mail I received a copy (unsolicited, unless I am suffering
from
> Early Onset of Alzheimer's) of NFR's Intrusion Detection Appliance v4.1
on
> CD-Rom. I did *not* receive a physical "appliance", and as I'm not
familiar
> with this product ...
>
> Does anyone know of NFR's stuff? Is this product worth "reviewing", or
> should I simply return it from whence it came?
>
> I'm still a newbie, and as we have a firewall in place, I'm afraid of
> "downgrading".
>
> If anyone has any experience with this, I'd appreciate hearing about it,
> either on the listserver or via direct email.
>
> Thanks In Advance,
> -----------------------------------------------------------------------
> Miss Yvette Seifert Hirth, CCP, CDP Voice: (847) 263 6800
> The DBT Group, Inc. Fax: (847) 263 6801
> 176 Ambrogio Drive Email: [EMAIL PROTECTED]
> Gurnee, IL 60031 WWW: http://www.dbtgroup.com
>
> "Who *are* those guys?"
> --Paul Newman, "Butch Cassidy and the Sundance Kid"
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
