IDS mailing list archives
RE: IDS
From: tcp fin <inet_inaddr () yahoo com>
Date: Mon, 10 Jul 2006 21:05:22 -0700 (PDT)
Hi Gopi, To Add to proneet's comments, you might want to look at the products similar to Bigfix , and other similar product which not only sets the patch management automation but also rolls out security by checking the registry and also making sure the related vulnerability patch is installed by scanning the machine. I remember this product but u can look at the other asset management products as well. Regards, TCP-FIN --- "Biswas, Proneet" <pbiswas () ipolicynetworks com> wrote:
Hi Gopi, There are two approaches to this problem. One way is to go with the Cisco Access Control Solution which would require any machine coming alive on the network to go through a compliance check on things like Anti-Virus,Patches etc. and if the machine is not compliant, then it would have a restricted network behavior. The other way is to go with Active/Passive Vulnerability scanners. These products scan the machine for patch levels and vulnerabilities and generate detailed reports. Number of products out there from companies like tenable,Eeye and some also in the service model like Qualys. However, in this case you would need to hook up the product with a patch management solution to automate the whole process or individually go and install patches. Thanks Proneet. ------Original Message----- From: Gopinath_Ramamoorthy () satyam com [mailto:Gopinath_Ramamoorthy () satyam com] Sent: Monday, July 03, 2006 12:58 AM To: focus-ids () securityfocus com Subject: IDS Dear Team... I have used few IDS in my network, doesn't found them working in the way i wanted. My requirement is when there is a machine / laptop are connected to my network, which is not updated with the current Patches, Security updates which is being approved needs to be reported to the Sys admin and immediate necessary steps would be taken. Is it possible to have this & if so suggest me the options pls. Regards, Gopi
------------------------------------------------------------------------
Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to
http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
This e-mail and any documents transmitted with it are the property of SOUTHBank F.S.B. ® and/or its subsidiary or affiliate companies, is confidential, and intended solely for the use of the individual or entity the e-mail is addressed to. If you have reason to believe that you have received this message in error, please notify the sender and delete this message immediately from your computer. Any other use, retention, dissemination, forwarding, printing, or copying of this e-mail or attachments is strictly prohibited. SOUTHBank, F.S.B. and/or its subsidiary or affiliate companies do not endorse the use of unsolicited e-mail. If you believe this e-mail was sent to you in error or you do not wish to receive these types of e-mail, please notify us by forwarding this message to remove () southbank com.
------------------------------------------------------------------------
Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to
http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
------------------------------------------------------------------------
Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to
http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
__________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. ------------------------------------------------------------------------