IDS mailing list archives
Re: Changes in IDS Companies?
From: "Raistlin" <raistlin () gioco net>
Date: Thu, 31 Oct 2002 17:58:12 +0100
And "IPS" seems to be a good example of it. Like you(Chris) have point out here, the IPS function will be turn off due to the fact that false alarms will be too high for it to be consider "safe" to use.
Even if there were no false alarms, something that automatically cuts in and prevents communication has an astounding potential to become the worst Denial-of-service tool on the market... It is really difficult to implement an AI engine clever enough to understand which attacks are using the prevention feature to actually cause harm _through_ the IPS itself. Stefano "Raistlin" Zanero System Administrator Gioco.Net public PGP key block at http://gioco.net/pgpkeys
Current thread:
- Re: Changes in IDS Companies?, (continued)
- Re: Changes in IDS Companies? Aaron Turner (Oct 16)
- RE: Changes in IDS Companies? Rob Shein (Oct 23)
- Re: Changes in IDS Companies? Aaron Turner (Oct 23)
- RE: Changes in IDS Companies? J. Foobar (Oct 16)
- RE: Changes in IDS Companies? Karl Lynn (Oct 16)
- RE: Changes in IDS Companies? Chris Petersen (Oct 16)
- Re: Changes in IDS Companies? roy lo (Oct 16)
- RE: Changes in IDS Companies? Oliver Petruzel (Oct 17)
- RE: Changes in IDS Companies? Mike Shaw (Oct 18)
- Re: Changes in IDS Companies? Frank Knobbe (Oct 18)
- Re: Changes in IDS Companies? Raistlin (Oct 31)
- Re: Changes in IDS Companies? Scott Wimer (Oct 31)
- Re: Changes in IDS Companies? Martin Roesch (Oct 16)
- Re: Changes in IDS Companies? Clint Byrum (Oct 17)