nanog mailing list archives

Re: Checkpoint IPS

From: Valdis.Kletnieks () vt edu
Date: Thu, 05 Feb 2015 11:46:55 -0500

On Thu, 05 Feb 2015 09:31:49 -0500, Terry Baranski said:

People tend to hear what they want to hear. Surely your claim can't be that
an IPS has never, in the history of Earth, prevented an attack or exploit.
So it's unclear to me what you're actually trying to say here.


Count up the number of *actual* attacks they have stopped that wouldn't
have been stopped otherwise, and contrast it to the number of times they've
been used as the *basis* for an attack (DDoS via state exhaustion, for starters)
or their failure has caused operational issues.  Remember that one of the
three security pillars is "Availability".

Still think they're a good idea?

Attachment: _bin
Description:

Current thread:

RE: Re: Checkpoint IPS, (continued)
- - - RE: Re: Checkpoint IPS Darden, Patrick (Feb 05)
    - Re: Checkpoint IPS Skeeve Stevens (Feb 05)
    - RE: Checkpoint IPS Darden, Patrick (Feb 05)
    - RE: Checkpoint IPS Terry Baranski (Feb 05)
    - Re: Checkpoint IPS Michael Hallgren (Feb 05)
    - Re: Checkpoint IPS jim deleskie (Feb 05)
    - Re: Checkpoint IPS Michael Hallgren (Feb 05)
    - Re: Checkpoint IPS Nick Hilliard (Feb 05)
    - Re: Checkpoint IPS Roland Dobbins (Feb 05)
    - Re: Checkpoint IPS Terry Baranski (Feb 05)
    - Re: Checkpoint IPS Valdis . Kletnieks (Feb 05)
    - Re: Checkpoint IPS Terry Baranski (Feb 05)
    - Re: Checkpoint IPS Roland Dobbins (Feb 05)
    - RE: Checkpoint IPS Terry Baranski (Feb 05)
    - Re: Checkpoint IPS Roland Dobbins (Feb 05)
    - Re: Checkpoint IPS Patrick Tracanelli (Feb 05)
    - Re: Checkpoint IPS Ray Soucy (Feb 06)
    - Re: Checkpoint IPS Roland Dobbins (Feb 06)
    - Re: Checkpoint IPS Patrick Tracanelli (Feb 06)
    - RE: Re: Checkpoint IPS Darden, Patrick (Feb 06)
    - RE: Re: Checkpoint IPS Darden, Patrick (Feb 06)

(Thread continues...)