IDS mailing list archives
RE: IDS Stealth Mode
From: "Aditya" <aditya () online gr8domain biz>
Date: Fri, 10 Jan 2003 12:30:34 +0530
how does one setup a stealth admin network using linux and win2k using snort and ipchains or any free firewall that comes along with freebsd please point me to the docs on the subject -aditya MAILTO:orwy8001 () sneakemail com -----Original Message----- From: r)(o)(m [mailto:nom.de.guerre () bonbon net] Sent: Wednesday, January 08, 2003 8:10 PM To: focus-ids () securityfocus com Subject: IDS Stealth Mode Retrying this post after 2 days: A common deployment configuration of Network IDS is to have 2 NICs; Teh monitoring interface in "stealth mode" with no IP and the "management" interface on a trusted internal network. My question is: Has anyone ever exploited the "stealth" interface to traverse networks? Has anyone (else) ever had to defend such a configuration against the argument: "where there's a wire, there's a way" ? r)(0)(m ________________________________________________________________________ Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
Current thread:
- IDS Stealth Mode r)(o)(m (Jan 08)
- Re: IDS Stealth Mode Kurt Seifried (Jan 09)
- Re: IDS Stealth Mode M. Dodge Mumford (Jan 10)
- Re: IDS Stealth Mode Talisker (Jan 11)
- Re: IDS Stealth Mode Dave Mitchell (Jan 11)
- Re: IDS Stealth Mode Matt Harris (Jan 11)
- RE: IDS Stealth Mode Aditya (Jan 12)
- RE: IDS Stealth Mode Brito, Nelson (ISS Brazil) (Jan 21)
- Re: IDS Stealth Mode Matt Simmons (Jan 21)
- Re: IDS Stealth Mode Jonas Eriksson (Jan 12)
- Re: IDS Stealth Mode Frank Knobbe (Jan 19)
- Re: IDS Stealth Mode Jonas Eriksson (Jan 12)