Home page logo
/

basics logo Security Basics mailing list archives

Re: Recommending an IDS system
From: "Bob Radvanovsky" <rsradvan () unixworks net>
Date: Thu, 4 Mar 2004 11:35:06 -0600

I seem to remember that it was BSD-ish "flavour", not LINUX, that it was
based upon.

-r

----- Original Message ----- 
From: "Bhargav Bhikkaji" <bbhikkaji () yahoo co in>
To: <security-basics () securityfocus com>
Sent: Wednesday, March 03, 2004 11:53 PM
Subject: Re: Recommending an IDS system


In-Reply-To: <3BAFCFDABE11C64DA68B005B0682BB84BF1AEE () cnbmail cnb-waco com>

New version of Cisco IDS runs on Linux box where as older version runs on
Solaris.

-Bhargav

From: "Josh Mills" <JMills () cnbwaco com>
To: "AJ Butcher, Information Systems and Computing"
<Alex.Butcher () bristol ac uk>,
"Reza Kordi" <rk () 4unet net>,
"Andy Cuff" <lists () securitywizardry com>,
"security-basics" <security-basics () securityfocus com>

We were on a netranger box and it was definetly solaris but when we =
switched the sales rep said it was now running on redhat. I will double =
check later today and see what it is actually running.

-----Original Message-----
From: AJ Butcher, Information Systems and Computing
[mailto:Alex.Butcher () bristol ac uk]
Sent: Wednesday, March 03, 2004 7:00 AM
To: Josh Mills; Reza Kordi; Andy Cuff; security-basics
Subject: RE: Recommending an IDS system=20




--On 01 March 2004 17:18 -0600 Josh Mills <JMills () cnbwaco com> wrote:

I have implemented a new cisco ids solution and i am very pleased with
it! the signatures are highly tunable for a commercial package and it
seems to be pretty stable. the sensor itself runs on redhat so maybe =
it
isnt that much different than snort.

Is this Cisco's Secure IDS appliance? The last time I looked at them =
(Aug=20
2002) they were running on top of Solaris x86 on Dell Poweredge =
hardware.=20
The NIDS itself couldn't be more different from Snort; back then, it =
didn't=20
give any information to allow the analyst to decide whether an attack =
was=20
successful or not... :(

I don't see any mention of a switch to RH for CSIDS on Cisco's website, =
so=20
I'm a little confused...

Best Regards,
Alex.
--=20
Alex Butcher: Security & Integrity, Personal Computer Systems Group
Information Systems and Computing             GPG Key ID: F9B27DC9
GPG Fingerprint: D62A DD83 A0B8 D174 49C4 2849 832D 6C72 F9B2 7DC9




---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545
off
any course! All of our class sizes are guaranteed to be 10 students or
less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:

http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_04030
3

---------------------------------------------------------------------------
-



--------------------------------------------------------------------------
-
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or
less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
--------------------------------------------------------------------------
--


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault