|
|
Focus on IDS
IDS causing troubles Feb 01 2011 09:53AM Shang Tsung (shangtsung71 gmail com) (9 replies) RE: IDS causing troubles Feb 01 2011 08:26PM Andrew Plato (andrew plato anitian com) (1 replies) Re: IDS causing troubles Feb 11 2011 07:41AM Joel Jaeggli (joelja bogus com) (2 replies) RE: IDS causing troubles Feb 11 2011 06:23PM Matthew Fitzgerald (matthew fitzgerald cae com) (2 replies) Re: IDS causing troubles Feb 11 2011 07:14PM Joel Jaeggli (joelja bogus com) (2 replies) Re: IDS causing troubles Feb 15 2011 03:23PM Joel Esler (joel esler me com) (1 replies) Re: IDS causing troubles Feb 18 2011 02:21PM Curt Purdy (infosysec gmail com) (1 replies) Re: IDS causing troubles Feb 18 2011 02:28PM Joel Esler (joel esler me com) (1 replies) Re: IDS causing troubles Feb 14 2011 06:28PM JiPi DiNi (jipidini gmail com) (1 replies) |
|
Privacy Statement |
piece of equipment they do not control.
You have to take in consideration the differing mind sets of Network
Engineers and Security Engineers, Network Engineers are all about
'Availability' whereas Security Engineers are all 'Integrity &
Confidentially'. Once you have a strong working relationship between the 2
teams, you are on the way to solving your issues
So the answer is not to immediately consider changing the equipment you
have, but to enhance the working relationship between your outsource company
and your network engineers, to enable them to discuss and analyse what is
going and the changes that any devices can make to your network operations.
It is not the device on the network that has the greatest impact, but its
configuration
From: Shang Tsung
Sent: Tuesday, February 01, 2011 9:53 AM
To: focus-ids (at) securityfocus (dot) com [email concealed]
Subject: IDS causing troubles
Hello,
We have the following problem. Now and then, the IDS will cause
disruptions to the network, especially after updates. We have an IBM
(ex ISS) Intrusion Detection System with a few network sensors and
several host sensors. The IDS is not managed by us but we have it
outsourced.
The disruptions mentioned above cause our network engineers extreme
dissatisfaction (and anxiety) about the IDS and they would "burn the
damn thing", if they could. We have 2 - 3 serious issues, causing
downtime, per year.
My questions are:
- Are any of you experience the same issues?
- Is these disruptions common to others or should we seriously
consider replacing the IDS and/or the outsourcing company?
- Could this be an issue with our network infrastructure?
I will appreciate any thoughts.
Thanks,
ST
-----------------------------------------------------------------
Securing Your Online Data Transfer with SSL.
A guide to understanding SSL certificates, how they operate and their
application. By making use of an SSL certificate on your web server, you can
securely collect sensitive information online, and increase business by
giving your customers confidence that their transactions are safe.
http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a
17f194
-----------------------------------------------------------------
Securing Your Online Data Transfer with SSL.
A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe.
http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a
17f194
[ reply ]