Focus on IDS Mode:
(Page 7 of 199)  < Prev  2 3 4 5 6 7 8 9 10 11 12  Next >
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-30
info netsentinc com
I've had bad experience with the McAfee sensors. Total crap. You can only filter by IP address, not ports too. One example is if you have an http server on a nonstandard port, your only option is to deal with the alarm or compeltely disable it entirely or for the IP address. You can't say HTTP i

[ more ]  [ reply ]
Re: RE: IPS - Cisco vs. McAfee vs. Tippingpoint - Tried Arbor and Top Layer? 2009-07-29
jfarley hush com (2 replies)
Hi,

> i need to protect a "realtime" website with an >inline IPS from (D)DOS attacks.

I'd keep in mind that the latest DDoS attacks are not limited to HTTP-based floods and use a variety of DDoS vectors to bring your website down. For instance, the DDoS from the Korean botnet - http://www.netw

[ more ]  [ reply ]
Re: RE: IPS - Cisco vs. McAfee vs. Tippingpoint - Tried Arbor and Top Layer? 2009-07-29
Augusto Pereyra (aepereyra gmail com) (1 replies)
IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Hurgel Bumpf (l0rd_lunatic yahoo com) (7 replies)

Hi List,

i need to protect a "realtime" website with an inline IPS from (D)DOS attacks.

I had some bad experience with Tippingpoint UnityOne 2400 field test. The device dropped to much sessions until all connectivity was lost.
After that no investigation was not possible as TP logs all attack in

[ more ]  [ reply ]
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Trygve Aasheim (trygve pogostick net)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Gary Halleen (ghalleen cisco com)
RE: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Diego Garay (dgaray dacas com)
RE: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
David Henning (David Henning hughes com) (1 replies)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Joel Snyder (Joel Snyder Opus1 COM) (1 replies)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Ronny Vaningh (ronny netrusion com) (1 replies)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Hurgel Bumpf (l0rd_lunatic yahoo com)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Paul Schmehl (pschmehl_lists tx rr com) (1 replies)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Joel Esler (eslerj gmail com) (1 replies)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Laurens Vets (laurens daemon be)
Re: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
Laurens Vets (laurens daemon be)
RE: IPS - Cisco vs. McAfee vs. Tippingpoint 2009-07-29
BARDINI, MICHAEL (michael bardini hp com)
Making my own IDS... how to detect packet loss ? 2009-07-16
Jonathon (thejunkjon gmail com) (2 replies)
I am writing my own IDS.  I have a packet sniffer + TCP reassembler
that I've written.  For each stream I detect, I have to keep some
state + a buffer of the packets for the stream.  However, a problem
that I've run into is that sometimes packets could get lost (meaning I
do not capture them, but th

[ more ]  [ reply ]
Re: Making my own IDS... how to detect packet loss ? 2009-07-16
Paul Palmer (paul_palmer us ibm com)
Re: Making my own IDS... how to detect packet loss ? 2009-07-16
Aaron Turner (synfinatic gmail com) (1 replies)
Re: Making my own IDS... how to detect packet loss ? 2009-07-16
Jonathon (thejunkjon gmail com) (1 replies)
RE: Making my own IDS... how to detect packet loss ? 2009-07-16
Francis, Shannon (Shannon Francis jetblue com) (1 replies)
Re: Making my own IDS... how to detect packet loss ? 2009-07-16
Martin Roesch (roesch sourcefire com)
Re: Honeypots, what is their limits for intrusion detection? 2009-07-08
krymson gmail com
I'll first say that honeypots are not a substitute for a decent IDS/IPS posture, or network analysis/server protection. I consider honeypot use an advanced technology that has only minimal value to most shops.

To answer your question, a honeypot will be able to detect two things:

- automated at

[ more ]  [ reply ]
Extended deadline: Monday, July 6th. Workshop on the Analysis of System Logs (WASL) 2009 2009-07-01
Greg Bronevetsky (greg bronevetsky com)
Due to multiple requests, the paper submission deadline for the Workshop
on the
Analysis of System Logs has been moved to Monday, July 6th.

Workshop on the Analysis of System Logs (WASL) 2009
http://www.systemloganalysis.com Call for Papers

=======================

[ more ]  [ reply ]
Honeypots, what is their limits for intrusion detection? 2009-07-01
Tomas Olsson (tol sics se) (2 replies)
Hi,
I have a newbie question related to intrusion detection. It was
suggested to me that Honeypots only catches automated attacks, is that
true? How can we know which attacks are not caught? Is there any papers
on what sort of attacks are caught by using honeypots?

Regards
Tomas

--------------

[ more ]  [ reply ]
Re: Honeypots, what is their limits for intrusion detection? 2009-07-01
Albert Gonzalez (albertg cerveau us)
(Page 7 of 199)  < Prev  2 3 4 5 6 7 8 9 10 11 12  Next >


 

Privacy Statement
Copyright 2010, SecurityFocus