Security Basics mailing list archives
Re: IDSs/IPSs and general monitoring with SNMP support built in
From: ckh () marahn dk
Date: 2 Jul 2007 17:17:36 -0000
Alot of these host-based IDS/IPS solutions can, with some scripting perhaps, be used with a syslog infrastructure. You should have a just as simple, or perhaps even simpler time of getting the reporting done from syslog data. Aren't all of these based around signature/integritycheck of filesystems. Are you getting the complete overview without a network-angle to the IDS/IPS?
Current thread:
- Re: IDSs/IPSs and general monitoring with SNMP support built in ckh (Jul 03)