Loki wrote:
>
> Ok, this whole thread deserves my feedback. I'm sure a great deal of people
> here in this forum have sat down at their computer one day in a REALLY bad
> mood and ended up getting a question that they don't think on before
> responding..
I'm sure I've done it more than once. ;)
> The problem here was that someone had posted how great the NFR IDS was, when
> in fact, I have a long history of problems with it that this forum is
> obviously not aware of.
This was the point of my post. No data, no backup. You complained about
Marcus but gave zero detail on why NFR is not "great". IMHO this makes
your post comes off as more of a personal attack thing rather than a
technical issue thing. If there is some feature that is broke or some
traffic pattern that it misses, please let us know so we can verify. If
you have a personal issue with Marcus, at least have the courtesy of
taking it up with him directly and off-line.
> On top of that, I sat in on a 1-2 hour big slap in
> the face session by Marcus Ranom to BUGTRAQ, all open disclosure mailing
> lists in existence, and every other security professional that I know.
Your doing it again... ;)
I'm not saying I agree or disagree with what Marcus said in his speech.
I'm only saying that you yet again state that you've had problems with
NFR and the only data you provide includes personal issues with Marcus.
> I will however apologize for not posting a much more constructive message to
> begin with... I will end this message with this: If Marcus Ranom wants to
> diminish the amount of "gray-hat" security professionals out there...
Nothing personal, but its going to be hard to consider anything you say
about NFR as being an honest evaluation of the product at this point
forward. You obviously have some deep seeded issues with Marcus and/or
what he said. IMHO this is going to skew any data or findings you may
have with NFR. My suggestion would be to contact Marcus directly to try
and work through this and find another product to evaluate because you
are too far gone to look at NFR objectively.
> And as far as the NFR IDS goes, no, it is not the "best ids out there" it to
> has its share of problems and vulnerabilities, some of which we have not yet
> disclosed.
I myself have used NFR and actually found it to be a good tool. Like any
"tool" it has its strengths and weaknesses and like any tool its not a
fit for every situation. This doesn't mean that NFR "sucks", just that
as security administrators our job is to pick the right tool for the
job.
> Consider me the "Ebert of the security industry" this one gets 2 thumbs
> down..
Ummm, Ebert will at least explain why he doesn't like a movie and site
example. I've never heard him state "Don't see this movie because I
think the director is a jerk".
> That and the CTO of a company should never make the mistake of gambling
> their reputation by giving a speech
> that could be considered HIGHLY controversial to some people.. just bad
> professionalism in my book
Your doing it _again_...
;)
Chris
--
**************************************
[EMAIL PROTECTED]
* Mastering Cisco Routers
http://www.amazon.com/exec/obidos/ASIN/078212643X/
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
