On Wed, 7 Mar 2001, Ron DuFresne wrote:
> I would not clasify tripwire as an IDS myself. I consider IDS systems
> to be proactive, while tripwire lacks that aspect and it's
> capabilities are far more limited then tools like snort and nfr and
> such.
intrusion *DETECTION* systems. not prevention, DETECTION.
all IDS's, whether NIDS or HIDS, are reactive by nature. events are
monitored and evaluated against a ruleset and alerts are generated when
violations come up. simple IDS theory and design.
____________________________
jose nazario [EMAIL PROTECTED]
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
