IDS mailing list archives

RE: IDS

From: tcp fin <inet_inaddr () yahoo com>
Date: Mon, 10 Jul 2006 21:05:22 -0700 (PDT)

Hi Gopi, 
To Add to proneet's comments, you might want to look
at the products similar to Bigfix , and other similar
product which not only sets the patch management
automation but also rolls out security by checking the
registry and also making sure the related
vulnerability patch is installed by scanning the
machine. 

I remember this product but u can look at the other
asset management products as well. 
Regards, 
TCP-FIN

--- "Biswas, Proneet" <pbiswas () ipolicynetworks com>
wrote:

Hi Gopi,
      There are two approaches to this problem. One way
is to go with the Cisco Access Control Solution
which would require any machine coming alive on the
network to go through a compliance check on things
like Anti-Virus,Patches etc. and if the machine is
not compliant, then it would have a restricted
network behavior. 
The other way is to go with Active/Passive
Vulnerability scanners. These products scan the
machine for patch levels and vulnerabilities and
generate detailed reports. Number of products out
there from companies like tenable,Eeye and some also
in the service model like Qualys. However, in this
case you would need to hook up the product with a
patch management solution to automate the whole
process or individually go and install patches.

Thanks
Proneet.

------Original Message-----
From: Gopinath_Ramamoorthy () satyam com
[mailto:Gopinath_Ramamoorthy () satyam com] 
Sent: Monday, July 03, 2006 12:58 AM
To: focus-ids () securityfocus com
Subject: IDS

Dear Team...

I have used few IDS in my network, doesn't found
them working in the way i wanted. My requirement is
when there is a machine / laptop are connected to my
network, which is not updated with the current
Patches, Security updates which is being approved
needs to be reported to the Sys admin and immediate
necessary steps would be taken. Is it possible to
have this & if so suggest me the options pls.

Regards,
Gopi

------------------------------------------------------------------------

Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with
real-world attacks from CORE IMPACT. Go to

http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.

------------------------------------------------------------------------



This e-mail and any documents transmitted with it
are the property of SOUTHBank F.S.B. Â® and/or its
subsidiary or affiliate companies, is confidential,
and intended solely for the use of the individual or
entity the e-mail is addressed to.  If you have
reason to believe that you have received this
message in error, please notify the sender and
delete this message immediately from your computer. 
Any other use, retention, dissemination, forwarding,
printing, or copying of this e-mail or attachments
is strictly prohibited.

SOUTHBank, F.S.B. and/or its subsidiary or affiliate
companies do not endorse the use of unsolicited
e-mail.  If you believe this e-mail was sent to you
in error or you do not wish to receive these types
of e-mail, please notify us by forwarding this
message to remove () southbank com.

------------------------------------------------------------------------

Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to

http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708


to learn more.

------------------------------------------------------------------------

------------------------------------------------------------------------

Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to

http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.

------------------------------------------------------------------------



__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------

Current thread:

Re: IDS, (continued)
- Re: IDS Tony Rall (Jul 05)
- AW: IDS Barthel, Frank (Jul 05)
  - Re: AW: IDS Thomas Choi (Jul 06)
- Re: IDS Ron Gula (Jul 05)
- Re: IDS Stefano Zanero (Jul 05)
  - RE: IDS Alan Shimel (Jul 06)
    - Re: IDS Joel M Snyder (Jul 07)
- RE: IDS Russell Starr (Jul 05)
  - RE: IDS Alan Shimel (Jul 06)
  - RE: IDS Biswas, Proneet (Jul 06)
    - RE: IDS tcp fin (Jul 12)
  - RE: IDS Dhruv Soi (Jul 06)
- Re: IDS barcajax (Jul 05)
  - RE: IDS Alan Shimel (Jul 06)