<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Re: SSL & IDS

Re: SSL & IDS

From: Mikael Olsson <mikael.olsson_at_ENTERNET.SE>
Date: Fri, 1 Sep 2000 09:36:34 +0200

Roelof Temmingh wrote:
>
> I am working on an article-thingy, and while writing I stumbled across
> this: IDS & SSL does not work together well...wow! (this was a joke).
> Even if you put an IDS on the same platform as the webserver it would not
> work. How should this be addressed?

You'll likely have to terminate the SSL connection on a reverse proxy
machine in front of the web server and do your IDS sniffing after that
reverse proxy.

--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 ÖRNSKÖLDSVIK
Phone: +46 (0)660 29 92 00         Direct: +46 (0)660 29 92 05
Mobile: +46 (0)70 66 77 636        Fax: +46 (0)660 122 50
WWW: http://www.enternet.se/       E-mail: mikael.olsson@enternet.se

Received on Sep 01 2000

This message: [ Message body ]
Next message: Erik Tayler: "Neotrace v2.12a Buffer Overflow [?]"
Previous message: Max: "SSI Injection Question"
Maybe in reply to: Denis Ducamp: "Re: SSL & IDS"
Next in thread: Ng Pheng Siong: "Re: SSL & IDS"
Reply: Ng Pheng Siong: "Re: SSL & IDS"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]