Dailydave: Re: lots of monkeys staring at a screen....security?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Dailydave mailing list archives

Re: lots of monkeys staring at a screen....security?

From: Blue Boar <BlueBoar () thievco com>
Date: Fri, 27 Oct 2006 10:45:32 -0700

Halvar Flake wrote:


I still agree with the concept of replacing an IDS with just a large 
quantity
of tapes on which to archive all traffic. IDSs will never alert you to an 
attack-
in-progress, and by just dumping everything onto a disk somewhere you can
at least do a halfways-decent forensics job thereafter.


Wow, how would you process that much traffic?  You would need some kind 
of software designed to read packet captures and look for particular 
patterns, and maybe flag them as potential attacks.

                                        BB
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

By Date By Thread

Current thread:

Re: lots of monkeys staring at a screen....security?, (continued)