OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Andrew Plato (aplatoanitian.com)
Date: Thu Jan 10 2002 - 20:38:11 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    ('binary' encoding is not supported, stored as-is) In-Reply-To: <9DCB77D01366AA4497DAFA759E1EB580BFAC33WW1WEX01>

    >The idea that has been proposed is to put the IDS in
    > the path between connections,
    > rather than connected in promiscuous mode.

    BlackICE Guard does exactly this. Its the BlackICE
    IDS on a dual interface system. Traffic enters one
    interface, gets IDS'ed, and if an intrusion is seen,
    blocked. "Safe" traffic exits the other interface. See:
    http://www.networkice.com/products/blackice_guard.
    html

    We sell these as appliances and have quite a few in
    the feild protecting AIX and UNIX boxes. With the right
    tweaking, they are very powerful.

    But they are not a replacement for a firewall. You
    should still have a good firewall.

    Andrew Plato
    President / Principal Consultant
    Anitian Corporation
    www.anitian.com