Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: A good question about NIDS & HIDS or why NIDS ant not just HIDS?

From: Aarón Mizrachi <unmanarc () gmail com>
Date: Mon, 1 Jun 2009 16:26:17 -0430
On Martes 26 Mayo 2009 20:16:56 Juan B escribió:

HI,

I am thinking that if the target of  a hacker is always the server so why I
need the NIDS ? I can monitor very well just the servers with some kind of
HIDS like Ossec and I am done no? why should I care about the NIDS when I
have a well configured HIDS on every server?


Something more... HIDS is also important... a good hids could look into SSL, 
and NIDS not.

This will be a key benefit if you want to prevent attacks on the server via 
HTTPS. But, my conclusion is.

If you have a server with HTTPS on your intranet: Use Both.
If not: Use NIDS


thanks

Juan




------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Need to pass the CISSP? InfoSec Institute's CISSP Boot Camp in both
Instructor-Led and Online formats is the most concentrated exam prep
available. Comprehensive course materials and an expert instructor means
you pass the exam. Gain a laser like insight into what is covered on the
exam, with zero fluff!

http://www.infosecinstitute.com/courses/cissp_bootcamp_training.html
------------------------------------------------------------------------


-- 
Ing. Aaron G. Mizrachi P.    

http://www.unmanarc.com
Mobil 1: + 58 416-6143543
Mobil 2: + 58 424-2412503
BBPIN: 0x 247066C1

Attachment: signature.asc
Description: This is a digitally signed message part.

Previous By Date Next
Previous By Thread Next

Current thread: