IDS mailing list archives

RE: Host Based IDS Recommendations?

From: "Ryan Finnesey" <ryan.finnesey () corpdsg com>
Date: Sat, 18 Oct 2003 22:58:01 -0400

Does anyone know if they offer service provider licensing?


Ryan




-----Original Message-----
From: Dmitri Smirnov [mailto:Dmitri.Smirnov () fusepoint com] 
Sent: Saturday, October 11, 2003 12:25 PM
To: Alvin Wong
Cc: focus-ids () securityfocus com
Subject: RE: Host Based IDS Recommendations?


I'm very happy at the moment with Cisco Security Agent (Okena
StormWatch). Support Solaris and Windows.
I think Cisco promised Linux support in future. 
Very like everything in this product except may be the idea to pay and
install the useless VMS CW2000... 
I believe it is the best way/technology/product to detect and prevent
attacks.

Dmitri

On Oct 10, 2003, at 12:40 AM, Alvin Wong wrote:

Hi,

I would like to find out for Windows boxes if there are any 
recommendations for Host based IDS, i know that for unix there is 
AIDE, linux, tripwire. What are the solutions for Windows machines? 
Would running a software IDS that is capable of monitoring and 
protecting the file systems a la tripwire with signed hashes kept in 
removable media be sufficient? If there are, what are the usual 
suspects for host based IDS that is used prevalently in industry? I'm 
hoping for both free and commercial solutions

Regards,
Alvin


----------------------------------------------------------------------
-


------------------------------------------------------------------------
---
Captus Networks IPS 4000
Intrusion Prevention and Traffic Shaping Technology to: 
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Automatically Control P2P, IM and Spam Traffic
 - Precisely Define and Implement Network Security & Performance
Policies
FREE Vulnerability Assessment Toolkit - WhitePapers - Live Demo 
http://www.securityfocus.com/sponsor/CaptusNetworks_focus-ids_000101
------------------------------------------------------------------------
---




---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_focus-ids_031015
---------------------------------------------------------------------------

Current thread:

Re: Host Based IDS Recommendations?, (continued)
- Re: Host Based IDS Recommendations? dreamwvr () dreamwvr com (Oct 14)
- Re: Host Based IDS Recommendations? Simon Gray (Oct 14)
- RE: Host Based IDS Recommendations? Mark E. Donaldson (Oct 15)
- RE: Host Based IDS Recommendations? Usama Yehia (Oct 14)
- RE: Host Based IDS Recommendations? Dmitri Smirnov (Oct 14)
- FW: Host Based IDS Recommendations? Zach Forsyth (Oct 14)
- RE: Host Based IDS Recommendations? Milind Nanal (Oct 15)
  - RE: Host Based IDS Recommendations? Alvin Wong (Oct 15)
- Re: Host Based IDS Recommendations? edward gonzales (Oct 17)
  - Re: Host Based IDS Recommendations? Mark Teicher (Oct 20)
- RE: Host Based IDS Recommendations? Ryan Finnesey (Oct 20)