|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: Can someone explain this to me? (Was "network based IDS")
From: Jon Gary (jgary
CLICKTOSECURE.COM)Date: Thu Nov 30 2000 - 19:17:05 CST
- Next message: Keiji Takeda: "Re: statistical analysis ? neural networks ?"
- Previous message: Teicher, Mark: "Re: Can someone explain this to me? (Was "network based IDS")"
- Next in thread: Teicher, Mark: "Re: Can someone explain this to me? (Was "network based IDS")"
- Maybe reply: Jon Gary: "Re: Can someone explain this to me? (Was "network based IDS")"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
From their webpage:
"- In one integrated, single device the CaptIO provides high performance
network security which uses the combined functions of a firewall, IDS,
router and network load balancer".
In other words, it combines the functions of a firewall and router that can
be used to fend off DDOS attacks. It does not run in promiscuous mode as
most IDS systems do. It is, in fact, more like a "bump in the wire"
appliance for many functions, one of which is IDS.
Jon Gary
ClickToSecure Labs
http://www.clicktosecure.com/
-----Original Message-----
From: mhtclark.net [mailto:mhtclark.net]
Sent: Thursday, November 30, 2000 8:06 AM
To: Jon Gary; FOCUS-IDSsecurityfocus.com
Subject: Re: Can someone explain this to me? (Was "network based IDS")
According to CaptIO it is capable of protecting against DDOS attackes.. Do
you mean to say that the information on their web page is incorrect.. How
could that be...???
At 04:03 PM 11/30/00 -0800, Jon Gary wrote:
>The simple answer is that it can't. That's what Firewalls and Routers are
>for :). IDS, as implied by it's name, is really good at detecting
>problems, and is rarely good at preventing them.
>
>Jon
>-----Original Message-----
>From: Focus on Intrusion Detection Systems
>[mailto:FOCUS-IDSSECURITYFOCUS.COM]On Behalf Of Rob Shein
>Sent: Thursday, November 30, 2000 2:58 PM
>To: FOCUS-IDSSECURITYFOCUS.COM
>Subject: Can someone explain this to me? (Was "network based IDS")
>
>Ok, I'd really like to know how an IDS is possibly going to be able to
>protect against a DDoS, since the real problem is as much the volume of
>traffic as the type of traffic. Obviously, by "DDoS," I am referring to
>the expansive, all-out mob-style attacks that made the term famous, not a
>set of 5 dial-up users who have been compromised. Even if the IDS can
>create rules on the fly in your firewall while brewing you a perfect cup
>of macchiato and taking your pet iguana for a walk, how can it possibly do
>any good when your link is saturated out past the border of your own
network?
>
> > The CaptIo can create rules "on the fly" to protect against DDOS
> attacks in less than 3 seconds.
>
- Next message: Keiji Takeda: "Re: statistical analysis ? neural networks ?"
- Previous message: Teicher, Mark: "Re: Can someone explain this to me? (Was "network based IDS")"
- Next in thread: Teicher, Mark: "Re: Can someone explain this to me? (Was "network based IDS")"
- Maybe reply: Jon Gary: "Re: Can someone explain this to me? (Was "network based IDS")"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]