Security Basics: Host IPS -vs- Network IPS? Do we need both?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics mailing list archives

Host IPS -vs- Network IPS? Do we need both?

From: lister () lihim org
Date: Wed, 3 Dec 2008 10:48:06 -0600

Some IPS vendors do not offer a Host IPS solution

Is there really a need for Host IPS if you already have Network IPS covering
the same network area?  What about if you already have other solutions on the
host (ie. file integrity)?

The overhead associated with Host IPS is very high (manage agent installs,
kernel module conflicts, etc).  Just curious if Host IDS is worth it if
the same coverage is provided with a Network IDS.

By Date By Thread

Current thread:

Host IPS -vs- Network IPS? Do we need both? lister (Dec 03)
- Re: Host IPS -vs- Network IPS? Do we need both? adeel hussain (Dec 04)
- <Possible follow-ups>
- Re: Host IPS -vs- Network IPS? Do we need both? krymson (Dec 04)