Re: NFR's Intrusion Detection Appliance

Thu, 3 Feb 2000 17:29:02 -0800 

On Thu, 3 Feb 2000, Miss Yvette Seifert Hirth, CCP, CDP wrote:

> Date: Thu, 3 Feb 2000 15:03:41 -0600
> From: "Miss Yvette Seifert Hirth, CCP, CDP" <[EMAIL PROTECTED]>
> To: "List Server, Firewalls" <[EMAIL PROTECTED]>
> Subject: NFR's Intrusion Detection Appliance 
> 
> Hi everybody!

Hello!

> 
> Today in the mail I received a copy (unsolicited, unless I am suffering from
> Early Onset of Alzheimer's) of NFR's Intrusion Detection Appliance v4.1 on
> CD-Rom.  I did *not* receive a physical "appliance", and as I'm not familiar
> with this product ...

Hey, since they sent the software through snail mail to spam you even 
when you're not online, the least they could have done was to send an
appliance too!

> 
> Does anyone know of NFR's stuff?  Is this product worth "reviewing", or
> should I simply return it from whence it came?

I think their IDS software is quite good, although I haven't looked at the
latest 2.x version.  It is very extensible.  Their model has been to have
resellers add value to their base product by adding their own signatures,
etc.

> 
> I'm still a newbie, and as we have a firewall in place, I'm afraid of
> "downgrading".

Intrusion detection != a firewall.  Intrusion detection can be used
effectively *alongside* all of your firewalls to "detect intrusions"--or
at least intrusions that the IDS knows about already.  Most IDS systems
are signature-based so they look for "attack signatures" on the network
just like virus checkers look for "virus signatures".  Your firewall's job
is to block most connections.  The IDS will show you if any known attacks
are making their way *through* your firewall on the allowed services.

> 
> If anyone has any experience with this, I'd appreciate hearing about it,
> either on the listserver or via direct email.
> 
> Thanks In Advance,
> -----------------------------------------------------------------------
> Miss Yvette Seifert Hirth, CCP, CDP       Voice: (847) 263 6800
> The DBT Group, Inc.                       Fax:   (847) 263 6801
> 176 Ambrogio Drive                        Email: [EMAIL PROTECTED]
> Gurnee, IL  60031                         WWW:   http://www.dbtgroup.com
> 
> "Who *are* those guys?"
> --Paul Newman, "Butch Cassidy and the Sundance Kid"
> 
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
> 


AT&T Wireless Services
IT Security
UNIX Security Operations Specialist

-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to