IDS mailing list archives
Re: Re: TrafficIQ HTTP IE traffic coverage
From: Devdas Bhagat <devdas () dvb homelinux org>
Date: Fri, 13 Oct 2006 14:04:58 +0530
On 12/10/06 09:44 +0530, Sanjay R wrote: <snip>
signatures for IE related DoS attacks. my point is "Is it necessary for an IDS/IPS to include a very exhausted list of IE DoS coverage?" There are many more serious vulnerabilities (a big number) and if we start paying attention to IE DoS related stuff (again a very big number), then think of performance. I can give an example of Traffic
Then you are asking the wrong questions in the first place from your software. Figure out what you want from the software, then look at products which work the way you want them to. Devdas Bhagat ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
Current thread:
- TrafficIQ HTTP IE traffic coverage SanjayR (Oct 11)
- Re: TrafficIQ HTTP IE traffic coverage Daniel DeLeo (Oct 12)
- Re: TrafficIQ HTTP IE traffic coverage Abhishek Bhuyan (Oct 12)
- Re: TrafficIQ HTTP IE traffic coverage Devdas Bhagat (Oct 13)
- <Possible follow-ups>
- Re: Re: TrafficIQ HTTP IE traffic coverage Sanjay R (Oct 12)
- Re: Re: TrafficIQ HTTP IE traffic coverage Devdas Bhagat (Oct 13)
- Re: Re: TrafficIQ HTTP IE traffic coverage Frank Knobbe (Oct 13)
- Re: TrafficIQ HTTP IE traffic coverage jimmywong78 (Oct 16)