TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
Is it a good thing to use RealSecure_Kill, or is it just letting the bad guys know the
IDS I am running without any value.
I would be interested in knowing the conditions under which compainies are triggering
RealSecure_Kill. We have what I consider an aggressive stance. If the attack is
ranked high and it is against a service or OS we run I kill it. After an extensive
set of HTTP_HEAD alerts recording someone attempting various HTTP and cgi attacks I am
considering RealSecure_Killing all HTTP_HEAD attempts. I am concerned it would be a
"feel good" act that would tell more to the bad guy then I would deny them?
----------------------------------------------------------------
Get your free email from AltaVista at http://altavista.iname.com
