IDS mailing list archives
Re: Rather funny; looks like page defacement to me
From: "Jerry M. Howell II" <jmhowell () jmhowell com>
Date: Fri, 13 Jun 2003 15:12:44 -0600
On Fri, Jun 13, 2003 at 11:29:51AM -0400, Anton Chuvakin wrote:
My first impression was that it is a page defacement, so outrageous some claims are. For instance, did you know that IDS actually _cause_ incident response to happen? :-) Or this gem : "Money Slated for Intrusion Detection Should Be Invested in Firewalls"?
I do agree that using IDS as a primary meens of thwarting hackers is a bad idea but I still beleave it should be part of the package. Depending on one "holy grail" application will eventualy leave you flat on your face. Thnk about it, IDS can aleart you to an agresive scan form one machine looking for the "vunerable ports". Granted all you can do it flag the ip at that time and watch it but at least you have a starting point. Also when, not if your company gets cracked, don't you think IDS will make the forensics a little easier. They are an important part of security but I've seen to many times someone puts all thier trust in one type of security. Planning and research is the best solution. It might require you to strain some braincells but it'll be worth it in the end. -- Jerry M. Howell II ------------------------------------------------------------------------------- INTRUSION PREVENTION: READY FOR PRIME TIME? IntruShield now offers unprecedented Intrusion IntelligenceTM capabilities - including intrusion identification, relevancy, direction, impact and analysis - enabling a path to prevention. Download the latest white paper "Intrusion Prevention: Myths, Challenges, and Requirements" at: http://www.securityfocus.com/IntruVert-focus-ids2 -------------------------------------------------------------------------------
Current thread:
- Rather funny; looks like page defacement to me Anton Chuvakin (Jun 13)
- Re: Rather funny; looks like page defacement to me adam (Jun 14)
- Re: [security-elvandar] Re: Rather funny; looks like page defacement to me Remko Lodder (Jun 18)
- Re: [security-elvandar] Re: Rather funny; looks like page defacement to me Paul Schmehl (Jun 18)
- Re: [security-elvandar] Re: Rather funny; looks like page defacement to me Remko Lodder (Jun 18)
- Re: Rather funny; looks like page defacement to me Jerry M. Howell II (Jun 14)
- Re: Rather funny; looks like page defacement to me Michael Sierchio (Jun 17)
- Re: Rather funny; looks like page defacement to me Paul Schmehl (Jun 17)
- Re: Rather funny; looks like page defacement to me George W. Capehart (Jun 17)
- Gartner comments (was Re: Rather funny; looks like page defacement to me) Randy Taylor (Jun 17)
- <Possible follow-ups>
- Re: Rather funny; looks like page defacement to me broyds (Jun 14)
- RE: IDS failures and avoiding them (WAS: Rather funny; looks like page defacement to me) Mike Lyman (Jun 17)
- RE: IDS failures and avoiding them (WAS: Rather funny; looks like page defacement to me) Jim Butterworth (Jun 17)
- RE: IDS failures and avoiding them (WAS: Rather funny; looks like page defacement to me) Angel Rivera (Jun 17)
- RE: IDS failures and avoiding them (WAS: Rather funny; looks like page defacement to me) Mike Lyman (Jun 17)
- RE: Rather funny; looks like page defacement to me Roger A. Grimes (Jun 17)
- Re: Rather funny; looks like page defacement to me Bill Royds (Jun 17)
- Re: Rather funny; looks like page defacement to me adam (Jun 14)