Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Intrusion Detection Systems mailing list archives

Re: Counterpane Managed Security Monitoring
From: mht () clark net (mht () clark net)
Date: Tue, 18 Jul 2000 19:06:03 -0700

Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
Yes,  Bruce's paper describes similiar offerings by the larger ISP's.  Is 
he going to offer something bigger and better than anyone else? I doubt 
it.. Will he run into the same bottlenecks and issues everyone else did 
when they attempted the same type of service? Unless he has developed a way 
to protect customer's data from end to end and from security expert analyst 
to another.  I would be very interested in seeing the whole customer order 
cycle to implementation to monitoring to event notification.

I am unsure of who he may hire to sit who is a CISSP, good credit, good 
teeth, good hair.  But a majority of us security folks may be ok in 2 out 
of 4 of the previous items listed, but not all. If you do have all 4, then 
you are probably are a Partner of some Big Three accounting firm appearing 
on the cover of some magazine advertising your E-Commerce Security service 
and live in Kansas City.

Cheers and Jeers

/m

At 05:30 PM 7/18/00 +0000, diphen () agitation net wrote:

Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems... email questions to ids-owner () uow edu au
NOTE: Remove this section from reply msgs otherwise the msg will bounce.
SPAM: DO NOT send unsolicted mail to this list.
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
-----------------------------------------------------------------------------
That describes us fairly well... Our 'Sentry' box basically gathers
syslog, SNMP traps, and mail alerts from various devices/software and
decides whether or not it's important enough to worry about based on our
filter set.  If it is, the data is sent back to one of our SOCs and
depending on the severity we'll either notify the customer with
information and recommendations, or include the information in a weekly
summary report.

-gabe
(Speaking as a person familiar with Counterpane and it's offering, not
as a representative of the company.)

On Tue, Jul 18, 2000 at 12:26:19PM -0400, b.g.miller wrote:

Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems... email questions to ids-owner () uow edu au
NOTE: Remove this section from reply msgs otherwise the msg will bounce.
SPAM: DO NOT send unsolicted mail to this list.
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au


-----------------------------------------------------------------------------

Has anyone on the list had experience with the new offering from 

Counterpane - Counterpane Managed Security Monitoring?  Seems to be

a meta-IDS bundled with a 24/7 staff.

http://www.counterpane.com/whitepaper.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]