http://www.nwfusion.com/techinsider/2002/0624security1.html
Those are the major conclusions of our first-ever IDS product comparison conducted "in the wild." Unlike previous tests run in lab settings, we put seven commercial IDS products and one open-source offering on a live ISP segment to see what they'd catch. What we found wasn't encouraging: # Several IDSs crashed repeatedly under the burden of the false alarms they churned out. # When real attacks came along, some products didn't catch them and others buried the reports so deep in false alarms that they were easy to miss. # Overly complex interfaces made tuning out false alarms a challenge. Because no product distinguished itself, we are not naming a winner (See "No cigar"). The eight products we tested - from Cisco, Intrusion, Lancope, Network Flight Recorder (NFR), Nokia (running on OEM version of Internet Security Systems RealSecure 6.5), OneSecure, Recourse Technologies and the open-source Snort package - all ask too much of their users in terms of time and expertise to be described as security must-haves. -- Octavian Popescu Internet Services Administrator Telemobil SA. Phone: +40-0788-10-11-48 E-mail: [EMAIL PROTECTED] --- Pentru dezabonare, trimiteti mail la [EMAIL PROTECTED] cu subiectul 'unsubscribe rlug'. REGULI, arhive si alte informatii: http://www.lug.ro/mlist/
